init the project

2017-12-23 18:02:11 +08:00
commit 81e14d12ea
54 changed files with 6829 additions and 0 deletions
--- a/rest/user_controller.go
+++ b/rest/user_controller.go
@ -0,0 +1,322 @@
+package rest
+
+import (
+	"net/http"
+	"regexp"
+	"strconv"
+
+	"time"
+)
+
+type UserController struct {
+	BaseController
+}
+
+//初始化方法
+func (this *UserController) Init(context *Context) {
+	this.BaseController.Init(context)
+}
+
+//注册自己的路由。
+func (this *UserController) RegisterRoutes() map[string]func(writer http.ResponseWriter, request *http.Request) {
+
+	routeMap := make(map[string]func(writer http.ResponseWriter, request *http.Request))
+
+	//每个Controller需要主动注册自己的路由。
+	routeMap["/api/user/create"] = this.Wrap(this.Create, USER_ROLE_ADMINISTRATOR)
+	routeMap["/api/user/edit"] = this.Wrap(this.Edit, USER_ROLE_ADMINISTRATOR)
+	routeMap["/api/user/change/password"] = this.Wrap(this.ChangePassword, USER_ROLE_USER)
+	routeMap["/api/user/reset/password"] = this.Wrap(this.ResetPassword, USER_ROLE_ADMINISTRATOR)
+	routeMap["/api/user/login"] = this.Wrap(this.Login, USER_ROLE_GUEST)
+	routeMap["/api/user/logout"] = this.Wrap(this.Logout, USER_ROLE_USER)
+	routeMap["/api/user/detail"] = this.Wrap(this.Detail, USER_ROLE_USER)
+	routeMap["/api/user/page"] = this.Wrap(this.Page, USER_ROLE_ADMINISTRATOR)
+	routeMap["/api/user/disable"] = this.Wrap(this.Disable, USER_ROLE_ADMINISTRATOR)
+	routeMap["/api/user/enable"] = this.Wrap(this.Enable, USER_ROLE_ADMINISTRATOR)
+
+	return routeMap
+}
+
+//使用用户名和密码进行登录。
+//参数：
+// @email:邮箱
+// @password:密码
+func (this *UserController) Login(writer http.ResponseWriter, request *http.Request) *WebResult {
+
+	email := request.FormValue("email")
+	password := request.FormValue("password")
+
+	if "" == email || "" == password {
+
+		return this.Error("请输入邮箱和密码")
+	}
+
+	user := this.userDao.FindByEmail(email)
+	if user == nil {
+
+		return this.Error("邮箱或密码错误")
+	} else {
+		if !MatchBcrypt(password, user.Password) {
+
+			return this.Error("邮箱或密码错误")
+		}
+	}
+
+	//登录成功，设置Cookie。有效期7天。
+	expiration := time.Now()
+	expiration = expiration.AddDate(0, 0, 7)
+
+	//持久化用户的session.
+
+	session := &Session{
+		UserUuid:   user.Uuid,
+		Ip:         GetIpAddress(request),
+		ExpireTime: expiration,
+	}
+	session.ModifyTime = time.Now()
+	session.CreateTime = time.Now()
+	session = this.sessionDao.Create(session)
+
+	//设置用户的cookie.
+	cookie := http.Cookie{
+		Name:    COOKIE_AUTH_KEY,
+		Path:    "/",
+		Value:   session.Uuid,
+		Expires: expiration}
+	http.SetCookie(writer, &cookie)
+
+	return this.Success(user)
+}
+
+//创建一个用户
+func (this *UserController) Create(writer http.ResponseWriter, request *http.Request) *WebResult {
+
+	username := request.FormValue("username")
+	if m, _ := regexp.MatchString(`^[0-9a-zA-Z_]+$`, username); !m {
+		return this.Error(`用户名必填，且只能包含字母，数字和'_''`)
+	}
+	password := request.FormValue("password")
+	if len(password) < 6 {
+		return this.Error(`密码长度至少为6位`)
+	}
+
+	email := request.FormValue("email")
+	if email == "" {
+		return this.Error("邮箱必填！")
+	}
+
+	phone := request.FormValue("phone")
+	gender := request.FormValue("gender")
+	role := request.FormValue("role")
+	city := request.FormValue("city")
+
+	//判断重名。
+	if this.userDao.CountByUsername(username) > 0 {
+		return this.Error(username + "已经被其他用户占用。")
+	}
+	//判断邮箱重名
+	if this.userDao.CountByEmail(email) > 0 {
+		return this.Error(email + "已经被其他用户占用。")
+	}
+
+	user := &User{
+		Role:     GetRole(role),
+		Username: username,
+		Password: GetBcrypt(password),
+		Email:    email,
+		Phone:    phone,
+		Gender:   gender,
+		City:     city,
+		Status:   USER_STATUS_OK,
+	}
+
+	user = this.userDao.Create(user)
+
+	return this.Success(user)
+}
+
+//编辑一个用户的资料。
+func (this *UserController) Edit(writer http.ResponseWriter, request *http.Request) *WebResult {
+
+	uuid := request.FormValue("uuid")
+	phone := request.FormValue("phone")
+	gender := request.FormValue("gender")
+	city := request.FormValue("city")
+
+	currentUser := this.checkUser(writer, request)
+	if currentUser.Role != USER_ROLE_ADMINISTRATOR {
+		if currentUser.Uuid != uuid {
+			return this.Error(RESULT_CODE_UNAUTHORIZED)
+		}
+	}
+
+	user := this.userDao.CheckByUuid(uuid)
+
+	user.Phone = phone
+	user.Gender = GetGender(gender)
+	user.City = city
+
+	user = this.userDao.Save(user)
+
+	return this.Success(user)
+}
+
+//获取用户详情
+func (this *UserController) Detail(writer http.ResponseWriter, request *http.Request) *WebResult {
+
+	uuid := request.FormValue("uuid")
+
+	user := this.userDao.CheckByUuid(uuid)
+
+	return this.Success(user)
+
+}
+
+//退出登录
+func (this *UserController) Logout(writer http.ResponseWriter, request *http.Request) *WebResult {
+
+	session, _ := this.checkLogin(writer, request)
+
+	//删除session
+	this.sessionDao.Delete(session.Uuid)
+
+	//清空客户端的cookie.
+	expiration := time.Now()
+	expiration = expiration.AddDate(-1, 0, 0)
+	cookie := http.Cookie{
+		Name:    COOKIE_AUTH_KEY,
+		Path:    "/",
+		Value:   session.Uuid,
+		Expires: expiration}
+	http.SetCookie(writer, &cookie)
+
+	return this.Success("退出成功！")
+}
+
+//获取用户列表 管理员的权限。
+func (this *UserController) Page(writer http.ResponseWriter, request *http.Request) *WebResult {
+
+	//如果是根目录，那么就传入root.
+	pageStr := request.FormValue("page")
+	pageSizeStr := request.FormValue("pageSize")
+	username := request.FormValue("username")
+	email := request.FormValue("email")
+	phone := request.FormValue("phone")
+	orderLastTime := request.FormValue("orderLastTime")
+	orderCreateTime := request.FormValue("orderCreateTime")
+
+	var page int
+	if pageStr != "" {
+		page, _ = strconv.Atoi(pageStr)
+	}
+
+	pageSize := 200
+	if pageSizeStr != "" {
+		tmp, err := strconv.Atoi(pageSizeStr)
+		if err == nil {
+			pageSize = tmp
+		}
+	}
+
+	sortArray := []OrderPair{
+		{
+			key:   "last_time",
+			value: orderLastTime,
+		},
+		{
+			key:   "create_time",
+			value: orderCreateTime,
+		},
+	}
+
+	pager := this.userDao.Page(page, pageSize, username, email, phone, sortArray)
+
+	return this.Success(pager)
+}
+
+//禁用用户
+func (this *UserController) Disable(writer http.ResponseWriter, request *http.Request) *WebResult {
+
+	uuid := request.FormValue("uuid")
+
+	user := this.userDao.CheckByUuid(uuid)
+
+	if user.Status == USER_STATUS_DISABLED {
+		return this.Error("用户已经被禁用，操作无效。")
+	}
+
+	user.Status = USER_STATUS_DISABLED
+
+	user = this.userDao.Save(user)
+
+	return this.Success(user)
+
+}
+
+//启用用户
+func (this *UserController) Enable(writer http.ResponseWriter, request *http.Request) *WebResult {
+
+	uuid := request.FormValue("uuid")
+
+	user := this.userDao.CheckByUuid(uuid)
+
+	if user.Status == USER_STATUS_OK {
+		return this.Error("用户已经是正常状态，操作无效。")
+	}
+
+	user.Status = USER_STATUS_OK
+
+	user = this.userDao.Save(user)
+
+	return this.Success(user)
+
+}
+
+//用户修改密码
+func (this *UserController) ChangePassword(writer http.ResponseWriter, request *http.Request) *WebResult {
+
+	oldPassword := request.FormValue("oldPassword")
+	newPassword := request.FormValue("newPassword")
+	if oldPassword == "" || newPassword == "" {
+		return this.Error("旧密码和新密码都不能为空")
+	}
+
+	user := this.checkUser(writer, request)
+
+	if !MatchBcrypt(oldPassword, user.Password) {
+		return this.Error("旧密码不正确！")
+	}
+
+	user.Password = GetBcrypt(newPassword)
+
+	user = this.userDao.Save(user)
+
+	return this.Success(user)
+}
+
+//管理员重置用户密码
+func (this *UserController) ResetPassword(writer http.ResponseWriter, request *http.Request) *WebResult {
+
+	userUuid := request.FormValue("userUuid")
+	password := request.FormValue("password")
+	if userUuid == "" {
+		return this.Error("用户不能为空")
+	}
+	if password == "" {
+		return this.Error("密码不能为空")
+	}
+
+	currentUser := this.checkUser(writer, request)
+
+	if currentUser.Role != USER_ROLE_ADMINISTRATOR {
+		return this.Error(RESULT_CODE_UNAUTHORIZED)
+	}
+
+	user := this.userDao.CheckByUuid(userUuid)
+
+	user.Password = GetBcrypt(password)
+
+	user = this.userDao.Save(user)
+
+	return this.Success(currentUser)
+}