package com.dsh.guns.modular.system.controller.system; import cn.hutool.crypto.SecureUtil; import com.baomidou.mybatisplus.extension.plugins.pagination.Page; import com.dsh.course.mapper.UserMapper; import com.dsh.guns.config.UserExt; import com.dsh.guns.config.properties.GunsProperties; import com.dsh.guns.core.base.controller.BaseController; import com.dsh.guns.core.base.tips.Tip; import com.dsh.guns.core.common.annotion.BussinessLog; import com.dsh.guns.core.common.annotion.Permission; import com.dsh.guns.core.common.constant.Const; import com.dsh.guns.core.common.constant.dictmap.UserDict; import com.dsh.guns.core.common.constant.factory.ConstantFactory; import com.dsh.guns.core.common.constant.factory.PageFactory; import com.dsh.guns.core.common.constant.state.ManagerStatus; import com.dsh.guns.core.common.exception.BizExceptionEnum; import com.dsh.guns.core.db.Db; import com.dsh.guns.core.exception.GunsException; import com.dsh.guns.core.log.LogObjectHolder; import com.dsh.guns.core.util.SinataUtil; import com.dsh.guns.modular.system.controller.util.MD5; import com.dsh.guns.modular.system.factory.UserFactory; import com.dsh.guns.modular.system.model.Role; import com.dsh.guns.modular.system.model.User; import com.dsh.guns.modular.system.service.IRoleService; import com.dsh.guns.modular.system.service.IUserService; import com.dsh.guns.modular.system.transfer.UserDto; import com.dsh.guns.modular.system.util.OssUploadUtil; import com.dsh.guns.modular.system.util.ResultUtil; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.stereotype.Controller; import org.springframework.ui.Model; import org.springframework.validation.BindingResult; import org.springframework.web.bind.annotation.*; import org.springframework.web.multipart.MultipartFile; import javax.naming.NoPermissionException; import javax.servlet.http.HttpServletResponse; import javax.validation.Valid; import java.util.*; /** * 系统管理员控制器 * * @author fengshuonan * @Date 2017年1月11日 下午1:08:17 */ @Controller @RequestMapping("/mgr") public class UserMgrController extends BaseController { private static String PREFIX = "/system/user/"; @Autowired private GunsProperties gunsProperties; @Autowired private IUserService userService; @Autowired private IRoleService roleService; /** * 跳转到查看管理员列表的页面 */ @RequestMapping("") public String index(Model model) { model.addAttribute("language",UserExt.getLanguage()); return PREFIX + "user.html"; } /** * 跳转到查看管理员列表的页面 */ @RequestMapping("/user_add") public String addView(Model model) { model.addAttribute("language",UserExt.getLanguage()); return PREFIX + "user_add.html"; } /** * 跳转到角色分配页面 */ //@RequiresPermissions("/mgr/role_assign") //利用shiro自带的权限检查 @Permission @RequestMapping("/role_assign/{userId}") public String roleAssign(@PathVariable Integer userId, Model model) { if (Objects.isNull(userId)) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } User user = (User) Db.create(UserMapper.class).selectOneByCon("id", userId); model.addAttribute("userId", userId); model.addAttribute("userAccount", user.getAccount()); return PREFIX + "user_roleassign.html"; } /** * 跳转到编辑管理员页面 */ @Permission @RequestMapping("/user_edit/{userId}") public String userEdit(@PathVariable Integer userId, Model model) { if (Objects.isNull(userId)) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } assertAuth(userId); User user = this.userService.getById(userId); model.addAttribute(user); model.addAttribute("roleName", ConstantFactory.me().getRoleName(user.getRoleid())); model.addAttribute("deptName", ConstantFactory.me().getDeptName(user.getDeptid())); LogObjectHolder.me().set(user); model.addAttribute("language",UserExt.getLanguage()); return PREFIX + "user_edit.html"; } /** * 跳转到查看用户详情页面 */ @RequestMapping("/user_info") public String userInfo(Model model) { Integer userId = UserExt.getUser().getId(); if (Objects.isNull(userId)) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } User user = this.userService.getById(userId); model.addAttribute(user); model.addAttribute("roleName", ConstantFactory.me().getRoleName(user.getRoleid())); model.addAttribute("deptName", user.getDeptid()==0?"顶级":ConstantFactory.me().getDeptName(user.getDeptid())); LogObjectHolder.me().set(user); return PREFIX + "user_view.html"; } /** * 跳转到修改密码界面 */ @RequestMapping("/user_chpwd") public String chPwd() { return PREFIX + "user_chpwd.html"; } /** * 修改当前用户的密码 */ @RequestMapping("/changePwd") @ResponseBody public Object changePwd(@RequestParam String oldPwd, @RequestParam String newPwd, @RequestParam String rePwd) { if (!newPwd.equals(rePwd)) { throw new GunsException(BizExceptionEnum.TWO_PWD_NOT_MATCH); } Integer userId = UserExt.getUser().getId(); User user = userService.getById(userId); String oldMd5 = MD5.md5(oldPwd); if (user.getPassword().equals(oldMd5)) { String newMd5 = MD5.md5(newPwd); user.setPassword(newMd5); user.updateById(); return SUCCESS_TIP; } else { throw new GunsException(BizExceptionEnum.OLD_PWD_NOT_RIGHT); } } /** * 查询管理员列表 */ @RequestMapping("/list") @Permission @ResponseBody public Object list(@RequestParam(required = false) String name, @RequestParam(required = false) String createTime, @RequestParam(required = false) Integer deptid) { //创建日期 String beginTime = null; String endTime = null; if (SinataUtil.isNotEmpty(createTime)){ String[] timeArray = createTime.split(" - "); beginTime = timeArray[0]; endTime = timeArray[1]; } User user = UserExt.getUser(); Role role = roleService.getBaseMapper().selectById(user.getRoleid()); if ("administrator".equals(role.getTips())) { Page> page = new PageFactory>().defaultPage(); page.setRecords(userService.getUserListPage(page,null, name, beginTime, endTime, deptid)); return super.packForBT(page); } else { Page> page = new PageFactory>().defaultPage(); page.setRecords(userService.getUserListPage(page,null, name, beginTime, endTime, deptid)); return super.packForBT(page); } } /** * 添加管理员 */ @RequestMapping("/add") @BussinessLog(value = "添加管理员", key = "account", dict = UserDict.class) @Permission(Const.ADMIN_NAME) @ResponseBody public Tip add(@Valid UserDto user, BindingResult result) { if (result.hasErrors()) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } // 判断账号是否重复 //Check if the account is duplicated User theUser = userService.getByAccount(user.getAccount()); if (theUser != null) { throw new GunsException(BizExceptionEnum.USER_ALREADY_REG); } // 完善账号信息 // Complete account information user.setPassword(SecureUtil.md5(user.getPassword())); user.setStatus(ManagerStatus.OK.getCode()); user.setCreatetime(new Date()); User objectUser = UserFactory.createUser(user); //查找平台所属公司 //Search for the company that owns the platform. this.userService.save(objectUser); return SUCCESS_TIP; } /** * 修改管理员 * * @throws NoPermissionException */ @RequestMapping("/edit") @BussinessLog(value = "修改管理员", key = "account", dict = UserDict.class) @ResponseBody public Tip edit(@Valid UserDto user, BindingResult result) throws NoPermissionException { if (result.hasErrors()) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } User oldUser = userService.getById(user.getId()); // UserExt.hasRole(Const.ADMIN_NAME) if (false) { this.userService.updateById(UserFactory.editUser(user, oldUser)); return SUCCESS_TIP; } else { assertAuth(user.getId()); User shiroUser = UserExt.getUser(); if (shiroUser.getId().equals(user.getId()) || shiroUser.getId()==1) { this.userService.updateById(UserFactory.editUser(user, oldUser)); return SUCCESS_TIP; } else { throw new GunsException(BizExceptionEnum.NO_PERMITION); } } } /** * 删除管理员(逻辑删除) * Delete administrator (logical deletion) */ @RequestMapping("/delete") @BussinessLog(value = "删除管理员", key = "userId", dict = UserDict.class) @Permission @ResponseBody public Tip delete(@RequestParam Integer userId) { if (Objects.isNull(userId)) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } //不能删除超级管理员 //Cannot delete super administrator. if (userId.equals(Const.ADMIN_ID)) { throw new GunsException(BizExceptionEnum.CANT_DELETE_ADMIN); } assertAuth(userId); this.userService.setStatus(userId, ManagerStatus.DELETED.getCode()); return SUCCESS_TIP; } /** * 查看管理员详情 */ @RequestMapping("/view/{userId}") @ResponseBody public User view(@PathVariable Integer userId) { if (Objects.isNull(userId)) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } assertAuth(userId); return this.userService.getById(userId); } /** * 重置管理员的密码 */ @RequestMapping("/reset") @BussinessLog(value = "重置管理员密码", key = "userId", dict = UserDict.class) @Permission(Const.ADMIN_NAME) @ResponseBody public Tip reset(@RequestParam Integer userId) { if (Objects.isNull(userId)) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } assertAuth(userId); User user = this.userService.getById(userId); user.setPassword(SecureUtil.md5(Const.DEFAULT_PWD)); this.userService.updateById(user); return SUCCESS_TIP; } /** * 冻结用户 */ @RequestMapping("/freeze") @BussinessLog(value = "冻结用户", key = "userId", dict = UserDict.class) @Permission(Const.ADMIN_NAME) @ResponseBody public Tip freeze(@RequestParam Integer userId) { if (Objects.isNull(userId)) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } //不能冻结超级管理员 Cannot freeze super administrator. if (userId.equals(Const.ADMIN_ID)) { throw new GunsException(BizExceptionEnum.CANT_FREEZE_ADMIN); } assertAuth(userId); this.userService.setStatus(userId, ManagerStatus.FREEZED.getCode()); return SUCCESS_TIP; } /** * 解除冻结用户 */ @RequestMapping("/unfreeze") @BussinessLog(value = "解除冻结用户", key = "userId", dict = UserDict.class) @Permission(Const.ADMIN_NAME) @ResponseBody public Tip unfreeze(@RequestParam Integer userId) { if (Objects.isNull(userId)) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } assertAuth(userId); this.userService.setStatus(userId, ManagerStatus.OK.getCode()); return SUCCESS_TIP; } /** * 分配角色 */ @RequestMapping("/setRole") @BussinessLog(value = "分配角色", key = "userId,roleIds", dict = UserDict.class) @Permission(Const.ADMIN_NAME) @ResponseBody public Tip setRole(@RequestParam("userId") Integer userId, @RequestParam("roleIds") String roleIds) { if (Objects.isNull(userId) || Objects.isNull(roleIds) ) { throw new GunsException(BizExceptionEnum.REQUEST_NULL); } //不能修改超级管理员 //Cannot modify super administrator if (userId.equals(Const.ADMIN_ID)) { throw new GunsException(BizExceptionEnum.CANT_CHANGE_ADMIN); } assertAuth(userId); this.userService.setRoles(userId, roleIds); return SUCCESS_TIP; } /** * 上传图片 */ @RequestMapping(method = RequestMethod.POST, path = "/uploadImg") @ResponseBody public String uploadImg(@RequestPart("file") MultipartFile picture) { String pictureName = ""; try { pictureName = OssUploadUtil.ossUpload("img/", picture); }catch (Exception e){ e.printStackTrace(); } return pictureName; } /** * 上传图片 */ /** * 上传图片Amis */ @RequestMapping(method = RequestMethod.POST, path = "/uploadImgAmis") @ResponseBody public ResultUtil uploadImgAmis(@RequestPart("file") MultipartFile picture, HttpServletResponse response) { String value = ""; try { value = OssUploadUtil.ossUpload("img/", picture); }catch (Exception e){ e.printStackTrace(); } System.out.println("图片返回地址-------"+value); Map map = new HashMap<>(); map.put("value",value); // return ResultUtil.success(0,map); return ResultUtil.getResult(0,null,null,map); } @RequestMapping(method = RequestMethod.POST, path = "/uploadFile") @ResponseBody public String uploadFile(@RequestPart("file") MultipartFile picture) { String pictureName = ""; try { pictureName = OssUploadUtil.ossUpload("video/", picture); }catch (Exception e){ e.printStackTrace(); } return pictureName; } /** * 判断当前登录的用户是否有操作这个用户的权限 */ private void assertAuth(Integer userId) { // if (ShiroKit.isAdmin()) { // return; // } // List deptDataScope = ShiroKit.getDeptDataScope(); // User user = this.userService.getById(userId); // Integer deptid = user.getDeptid(); // if (deptDataScope.contains(deptid)) { // return; // } else { // throw new GunsException(BizExceptionEnum.NO_PERMITION); // } } }