常見用戶接口

2024-04-27 15:10:37

字體：大中小

來源：轉載

供稿：網友

package data.bi.api;

import java.util.HashMap; import java.util.List; import java.util.Map;

import javax.annotation.Resource; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse;

import org.apache.log4j.Logger; import org.sPRingframework.stereotype.Controller; import org.springframework.web.bind.annotation.RequestMapping; import org.springframework.web.bind.annotation.ResponseBody;

import com.google.gson.Gson;

import data.bi.entity.IndexImgUrl; import data.bi.entity.IndexModuleContent; import data.bi.entity.Permission; import data.bi.entity.ReportLink; import data.bi.entity.User; import data.bi.entity.help.ModuleContent; import data.bi.entity.help.Modules; import data.bi.entity.help.UserPermission; import data.bi.service.BIDataService; import data.bi.service.BISupportService;

/** * 基于操作用戶的action * * @author json * */ @Controller @RequestMapping public class BIUserServer { private Logger logs = Logger.getLogger(getClass()); @Resource(name = “biDataService”) private BIDataService service; @Resource(name = “bISupportService”) private BISupportService supportservice;

@RequestMapping(value = "givemodules", produces = "text/html;charset=UTF-8")@ResponseBodypublic String giveModules(HttpServletResponse response, HttpServletRequest request) { /** * 獲取所有的模塊 */ Gson gson = new Gson(); return gson.toJson(service.getModules());}@RequestMapping(value = "adduser", produces = "text/html;charset=UTF-8")@ResponseBodypublic String addUsers(HttpServletRequest request, HttpServletResponse response, User u, Modules m, String token) { /** * 需求添加用戶并分配權限 * * 為了防止惡意添加權限，在添加用戶或者添加權限時，需提供存儲在cookie里的user對應的value值 * ，然后從session中獲取對應值的角色，如果是admin，則可以添加角色 * * 步驟： 1.先判斷用戶是否登陸，如果尚未登陸，直接返回尚未登陸 * 2.從session中獲取對應值的角色，如果不是admin怎返回您不是管理員，不能對此進行操作 3.添加用戶，以及分配權限接口： * 1.判斷用戶是否登陸，以及用戶是否是admin管理員的身份的接口 2.添加用戶的接口 3.添加權限的接口 * 4.根據用戶名查找對應的用戶id的接口 */ // response.addHeader("access-Control-Allow-Origin", "*"); String msg = ""; // 判斷用戶是否登陸 // String tok=(String) request.getSession().getAttribute("user"); // if(tok==null||!tok.equals(token)){ // msg="您尚未登陸或登陸已過期，請重新登陸?。?！"; // }else{ try { String role = (String) request.getSession().getAttribute(token); if (role.equals("admin")) { boolean flag = service.userIsExist(u); if (!flag) { // 添加用戶 service.insert_User_table(u); if (u.getUser_role().equals("0")) { User us = service.queryUserByUserName(u); String userid = us.getUser_id(); if (m.getModule1() != null) { Permission p = new Permission(); p.setModule_id(m.getModule1()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule2() != null) { Permission p = new Permission(); p.setModule_id(m.getModule2()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule3() != null) { Permission p = new Permission(); p.setModule_id(m.getModule3()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule4() != null) { Permission p = new Permission(); p.setModule_id(m.getModule4()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule5() != null) { Permission p = new Permission(); p.setModule_id(m.getModule5()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule6() != null) { Permission p = new Permission(); p.setModule_id(m.getModule6()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule7() != null) { Permission p = new Permission(); p.setModule_id(m.getModule7()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule8() != null) { Permission p = new Permission(); p.setModule_id(m.getModule8()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule9() != null) { Permission p = new Permission(); p.setModule_id(m.getModule9()); p.setUser_id(userid); service.grantPermission(p); } } // 可以根據插入數據庫的數據判斷 msg = "添加成功?。?！"; } else { msg = "用戶名已存在?。。?; } } else { msg = "您不是管理員，不能操作此模塊"; } } catch (Exception e) { msg = "您不是管理員，不能操作此模塊"; } // } return msg;}@RequestMapping(value = "addpermission", produces = "text/html;charset=UTF-8")@ResponseBodypublic String addPermission(HttpServletRequest request, HttpServletResponse response, User u, Modules m, String token) { /** * 添加權限 */ String msg = ""; try { String role = (String) request.getSession().getAttribute(token); if (role.equals("admin")) { User us = service.queryUserByUserName(u); String userid = us.getUser_id(); if (m.getModule1() != null) { Permission p = new Permission(); p.setModule_id(m.getModule1()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule2() != null) { Permission p = new Permission(); p.setModule_id(m.getModule2()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule3() != null) { Permission p = new Permission(); p.setModule_id(m.getModule3()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule4() != null) { Permission p = new Permission(); p.setModule_id(m.getModule4()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule5() != null) { Permission p = new Permission(); p.setModule_id(m.getModule5()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule6() != null) { Permission p = new Permission(); p.setModule_id(m.getModule6()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule7() != null) { Permission p = new Permission(); p.setModule_id(m.getModule7()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule8() != null) { Permission p = new Permission(); p.setModule_id(m.getModule8()); p.setUser_id(userid); service.grantPermission(p); } if (m.getModule9() != null) { Permission p = new Permission(); p.setModule_id(m.getModule9()); p.setUser_id(userid); service.grantPermission(p); } msg = "true"; } else { msg = "您不是管理員，不能操作此模塊"; } } catch (Exception e) { msg = "您不是管理員，不能操作此模塊"; } return msg;}@RequestMapping(value = "decreatepermission", produces = "text/html;charset=UTF-8")@ResponseBodypublic String decreatePermission(HttpServletRequest request, HttpServletResponse response, User u, Modules m, String token) { /** * 刪除權限 */ String msg = ""; try { String role = (String) request.getSession().getAttribute(token); if (role.equals("admin")) { if (m.getModule1() != null) { Permission p = new Permission(); p.setModule_id(m.getModule1()); service.deleteUserPer(p, u); } if (m.getModule2() != null) { Permission p = new Permission(); p.setModule_id(m.getModule2()); service.deleteUserPer(p, u); } if (m.getModule3() != null) { Permission p = new Permission(); p.setModule_id(m.getModule3()); service.deleteUserPer(p, u); } if (m.getModule4() != null) { Permission p = new Permission(); p.setModule_id(m.getModule4()); service.deleteUserPer(p, u); } if (m.getModule5() != null) { Permission p = new Permission(); p.setModule_id(m.getModule5()); service.deleteUserPer(p, u); } if (m.getModule6() != null) { Permission p = new Permission(); p.setModule_id(m.getModule6()); service.deleteUserPer(p, u); } if (m.getModule7() != null) { Permission p = new Permission(); p.setModule_id(m.getModule7()); service.deleteUserPer(p, u); } if (m.getModule8() != null) { Permission p = new Permission(); p.setModule_id(m.getModule8()); service.deleteUserPer(p, u); } if (m.getModule9() != null) { Permission p = new Permission(); p.setModule_id(m.getModule9()); service.deleteUserPer(p, u); } msg="true"; } else { msg = "您不是管理員，不能操作此模塊"; } } catch (Exception e) { e.printStackTrace(); msg = "您不是管理員，不能操作此模塊"; } return msg;}@RequestMapping(value = "userlogin", produces = "text/html;charset=UTF-8")@ResponseBodypublic String userlogin(HttpServletRequest request, HttpServletResponse response, User u) { /** * 需求：用戶登錄步驟： 1.查看用戶名和密碼是否正確 * 2.正確后生成一個隨機的uuid存儲到session中，存儲為user對應的值為uuid * 3.存儲對應得uuid和用戶的角色到session中方便創建角色以及一些管理員的一些操作的判斷 user:uuid * uuid:管理員/用戶權限接口： 1.根據用戶名和密碼查看用戶是否正確 2.根據用戶id查尋用戶的權限 */ // response.addHeader("Access-Control-Allow-Origin", "*"); logs.info("我到login的action中了"); Map<String, Object> map = service.UserLogin(u); boolean flag = (boolean) map.get("flag"); String token = ""; if (flag) { User user = (User) map.get("user"); // 生成token token = java.util.UUID.randomUUID().toString(); request.getSession().setAttribute("user", token); request.getSession().setAttribute("users", user); if (user.getUser_role().equals("1")) { String role = (String) map.get("uuid"); request.getSession().setAttribute(token, role); } else { @SuppressWarnings("unchecked") List<UserPermission> list = (List<UserPermission>) map .get("uuid"); request.getSession().setAttribute(token, list); } } return token;}@RequestMapping(value = "queryper", produces = "text/html;charset=UTF-8")@ResponseBodypublic String queryUserPower(HttpServletResponse response, HttpServletRequest request, User u) { /** * 根據管理員傳入的userid查詢用戶已有的權限和沒有的權限 */ String msg = ""; Map<String, Object> map = service.getUserPers(u); if (!(boolean) map.get("flag")) { return "error"; } Gson gson = new Gson(); msg = gson.toJson(map); return msg;}@RequestMapping(value = "userloginout", produces = "text/html;charset=UTF-8")@ResponseBodypublic String userLogOut(HttpServletRequest request, HttpServletResponse response) { // response.addHeader("Access-Control-Allow-Origin", "*"); String token = (String) request.getSession().getAttribute("user"); request.getSession().removeAttribute(token); request.getSession().removeAttribute("user"); return null;}@RequestMapping(value = "checkadmin", produces = "text/html;charset=UTF-8")@ResponseBodypublic String checkadmin(HttpServletRequest request,HttpServletResponse response,String token){ boolean flag=true; String msg=""; String role = (String) request.getSession().getAttribute(token); if(role!=null&&role.equals("admin")){ User user=(User) request.getSession().getAttribute("users"); msg=user.getUser_name(); }else{ flag=false; msg="您不是管理員，無權訪問該頁面"; } HashMap<String, Object> map = new HashMap<String, Object>(); map.put("flag", flag); map.put("msg", msg); Gson gson=new Gson(); return gson.toJson(map);}@RequestMapping(value="updatepass",produces="text/html;charset=UTF-8")@ResponseBodypublic String updatePass(HttpServletRequest request,HttpServletResponse response,User u,String token){ boolean flag=true; String msg=""; String role = (String) request.getSession().getAttribute(token); if(role!=null&&role.equals("admin")){ int num=service.updateUserPassWord(u); if(num>0){ msg=u.getUser_password(); }else{ flag=false; msg="網絡延遲，請重新嘗試?。?！"; } }else{ flag=false; msg="您不是管理員，或尚未登陸！?。?; } HashMap<String, Object> map = new HashMap<String, Object>(); map.put("flag", flag); map.put("msg", msg); Gson gson=new Gson(); return gson.toJson(map);}@RequestMapping(value="getlink",produces="text/html;charset=UTF-8")@ResponseBodypublic String getLinks(HttpServletRequest request,HttpServletResponse response,ReportLink r){ if(r.getId()!=0){ ReportLink rl=supportservice.getLinkById(r); if(rl!=null){ Gson gson=new Gson(); return gson.toJson(rl); }else{ return "沒有查找到該id所對應的鏈接"; } }else{ return "請輸入id參數"; }}@RequestMapping(value="getimgs",produces="text/html;charset=UTF-8")@ResponseBodypublic String getImgs(HttpServletRequest request,HttpServletResponse response){ List<IndexImgUrl> list=supportservice.getAllImgs(); Gson gson=new Gson(); return gson.toJson(list);}@RequestMapping(value="getcontent",produces="text/html;charset=UTF-8")@ResponseBodypublic String getContent(HttpServletRequest request,HttpServletResponse response){ List<ModuleContent> list=supportservice.getModuleContent(); Gson gson=new Gson(); return gson.toJson(list);}@RequestMapping(value="getuserinfo",produces="text/html;charset=UTF-8")@ResponseBodypublic String getUserInfo(HttpServletRequest request,HttpServletResponse response){ List<User> list=supportservice.getUserInfo(); Gson gson=new Gson(); return gson.toJson(list);}@RequestMapping(value="getuserbyUsername",produces="text/html;charset=UTF-8")@ResponseBodypublic String getuserbyUsername(HttpServletRequest request,HttpServletResponse response, String user_name,String user_password){ User u = new User(); u.setUser_name(user_name); boolean flag = service.userIsExist(u); if (flag == true) { u.setUser_name(user_name); u.setUser_password(user_password); service.updateUserPassword(u); Gson gson=new Gson(); return gson.toJson(1); } return null;}@RequestMapping(value="getuserbyUser",produces="text/html;charset=UTF-8")@ResponseBodypublic String getuserbyUser(HttpServletRequest request,HttpServletResponse response, String user_name,String user_password){ User u = new User(); u.setUser_name(user_name); Gson gson=new Gson(); User u1 =service.queryUserByUserName(u); System.out.println(u1.getUser_name()+u1.getUser_password()+u1.getUser_role()); return gson.toJson(service.queryUserByUserName(u));}@RequestMapping(value="delUser",produces="text/html;charset=UTF-8")@ResponseBodypublic String getdelUser(HttpServletRequest request,HttpServletResponse response, String id){ Permission p = new Permission(); p.setUser_id(id); service.delPermission(p); User u = new User(); u.setUser_id(id); service.delUser(u); Gson gson=new Gson(); return gson.toJson(1);}

}

上一篇：html5學習筆記（四）（摘抄講義加部分理解）

下一篇：mybatis的user的xml簡單配置