password.jsp

非常完整的Java开发的网络办公系统

<%
/**
 *	$RCSfile: password.jsp,v $
 *	$Revision: 1.4 $
 *	$Date: 2000/12/18 21:37:08 $
 */
%>

<%@ page 
	import="java.util.*,
            com.coolservlets.forum.*,
	        com.coolservlets.forum.util.*,
	        com.coolservlets.forum.util.admin.*"
	errorPage="error.jsp"
%>

<jsp:useBean id="adminBean" scope="session"
 class="com.coolservlets.forum.util.admin.AdminBean"/>
 
<%	////////////////////////////////
	// Jive authorization check
	
	// check the bean for the existence of an authorization token.
	// Its existence proves the user is valid. If it's not found, redirect
	// to the login page
	Authorization authToken = adminBean.getAuthToken();
	if( authToken == null ) {
		response.sendRedirect( "/mainctrl/bbs/admin" );
		return;
	}
%>

<%	////////////////////
	// Security check
	
	// make sure the user is authorized to create forums::
	ForumFactory forumFactory = ForumFactory.getInstance(authToken);
	boolean isSystemAdmin = ((Boolean)session.getValue("jiveAdmin.systemAdmin")).booleanValue();
	
	// redirect to error page if we're not a forum admin or a system admin
	if( !isSystemAdmin ) {
		throw new UnauthorizedException("对不起，您没有权限修改密码！");
	}
%>

<%	////////////////////
	// get parameters
	
	boolean doChange = ParamUtils.getBooleanParameter(request,"doChange");
	String adminPassword = ParamUtils.getParameter(request,"adminPassword");
	String username = ParamUtils.getParameter(request,"username");
	String newPassword = ParamUtils.getParameter(request,"newPassword");
	String confirmNew = ParamUtils.getParameter(request,"confirmNew");
%>

<%	//////////////////
	// error variables
	
	boolean errorAdminPassword = (adminPassword==null);
	boolean errorUsername = (username==null);
	boolean errorNewPassword = (newPassword==null);
	boolean errorConfirmNew = (confirmNew==null);
	boolean errorNewPasswordsNotEqual = true;
	if( !errorNewPassword && !errorConfirmNew ) {
		if( newPassword.equals(confirmNew) ) {
			errorNewPasswordsNotEqual = false;
		}
	}
	boolean errors = ( errorAdminPassword
					   || errorUsername
					   || errorNewPassword
					   || errorConfirmNew
					   || errorNewPasswordsNotEqual
					 );
%>

<%	////////////////////
	// set the password if there are no errors
	
	ProfileManager manager = forumFactory.getProfileManager();
	boolean errorUserNotExist = false;
	if( !errors && doChange ) {
		
		// reauthenticate the admin:
		try {
			User adminUser = manager.getUser(authToken.getUserID());
			//AuthorizationFactory authFactory = AuthorizationFactory.getInstance();
			authToken = AuthorizationFactory.getAuthorization(adminUser.getUsername(),adminPassword);
			if( authToken == null ) {
				errorAdminPassword = true;
			}
		}
		catch( Exception e ) {
			errorAdminPassword = true;
		}
		
		// try to load specified user:
		if( !errorAdminPassword ) {
			try {
				User user = manager.getUser(username);
				user.setPassword(newPassword);
				response.sendRedirect(
					response.encodeRedirectURL("users.jsp?msg=密码修改成功！")
				);
			}
			catch( UserNotFoundException unfe ) {
				errorUserNotExist = true;
			}
		}
	}
%>

<%	//////////////////
	// recheck for errors
	
	errors = (errors || errorUserNotExist || errorAdminPassword);
%>

<html>
<head>
	<title></title>
	<link rel="stylesheet" href="style/global.css">
</head>

<body background="images/shadowBack.gif" bgcolor="#ffffff" text="#000000" link="#0000ff" vlink="#800080" alink="#ff0000">

<%	///////////////////////
	// pageTitleInfo variable (used by include/pageTitle.jsp)
	String[] pageTitleInfo = { "系统设置", "修改密码" };
%>
<%	///////////////////
	// pageTitle include
%><%@ include file="include/pageTitle.jsp" %>

<p>

修改密码

<p>

<i>(所有字段都是必须的)</i>

<p>

<form action="password.jsp" method="post">
<input type="hidden" name="doChange" value="true">

<table bgcolor="#666666" cellpadding="0" cellspacing="0" border="0" width="80%" align="center">
<td>
<table bgcolor="#666666" cellpadding="3" cellspacing="1" border="0" width="100%">
<tr bgcolor="#ffffff">
	<td>
		<%= (doChange&&errorAdminPassword)?"<font color=\"#ff0000\">(error)</font><br>":"" %>
		请重新输入<br>管理员密码</td>
	<td><input type="password" name="adminPassword" size="30"></td>
</tr>
<tr bgcolor="#ffffff"><td colspan="2">&nbsp;</td></tr>
<tr bgcolor="#ffffff">
	<td>
		<%= (doChange&&(errorUsername||errorUserNotExist))?"<font color=\"#ff0000\">(error)</font><br>":"" %>
		要修改的用户名
	</td>
	<td><input type="text" name="username" size="30"></td>
</tr>
<tr bgcolor="#ffffff">
	<td>
		<%= (doChange&&(errorNewPassword||errorNewPasswordsNotEqual))?"<font color=\"#ff0000\">(Error: no password entered or passwords not equal)</font><br>":"" %>
		新密码
	</td>
	<td><input type="password" name="newPassword" size="30"></td>
</tr>
<tr bgcolor="#ffffff">
	<td>
		<%= (doChange&&(errorConfirmNew||errorNewPasswordsNotEqual))?"<font color=\"#ff0000\">(Error: no password entered or passwords not equal)</font><br>":"" %>
		新密码确认
	</td>
	<td><input type="password" name="confirmNew" size="30"></td>
</tr>
</table>
</td>
</table>

<p>

<center>
	<input type="submit" value="修改密码">
</center>

</form>

</body>
</html>