passwordaction.java

J2EE架构的权限系统

//Created by MyEclipse Struts
// XSL source (default): platform:/plugin/com.genuitec.eclipse.cross.easystruts.eclipse_3.8.4/xslt/JavaClass.xsl

package com.infosys.struts.action;

import java.util.Hashtable;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import net.sf.hibernate.HibernateException;
import net.sf.hibernate.Session;
import net.sf.hibernate.Transaction;

import org.apache.struts.action.Action;
import org.apache.struts.action.ActionForm;
import org.apache.struts.action.ActionForward;
import org.apache.struts.action.ActionMapping;
import org.infosys.common.Constants;
import org.infosys.logic.InfoTips;
import org.infosys.security.UserData;
import org.infosys.util.ParamUtil;

import com.infosys.Hibernate.PUserExt;
import com.infosys.Hibernate.SessionFactory;
import com.infosys.struts.form.PasswordForm;

/** 
 * MyEclipse Struts
 * Creation date: 08-23-2005
 * 
 * XDoclet definition:
 * @struts:action path="/password" name="passwordForm" input="/admin/password.jsp" scope="request" validate="true"
 * @struts:action-forward name="admin/password" path="/admin/password.jsp"
 */
public class PasswordAction extends Action {

	// --------------------------------------------------------- Instance Variables

	// --------------------------------------------------------- Methods

	/** 
	 * Method execute
	 * @param mapping
	 * @param form
	 * @param request
	 * @param response
	 * @return ActionForward
	 */
	public ActionForward execute(
		ActionMapping mapping,
		ActionForm form,
		HttpServletRequest request,
		HttpServletResponse response) {
		PasswordForm passwordForm = (PasswordForm) form;
//		验证登录
		boolean isLogin=org.infosys.security.Check.isLogin(request,response); 
		if(!isLogin){
			org.infosys.security.Check.redirectErr(request,response,"err.do?errmsg=You not login system");
			return null;
		}else{
			//处理业务逻辑
			if(passwordForm.getAction()!=null){
				String status=null;
				Hashtable userHash = new Hashtable();
				userHash = UserData.userInfo(request);
				String sessionpwd=userHash.get("passwd").toString();
				String userid=userHash.get("userid").toString();
				if(sessionpwd.equals(passwordForm.getOld_pwd())){
					//修改密码
					Transaction tx;
					Session session;
					try {
						session = SessionFactory.currentSession();
						tx=session.beginTransaction();
						PUserExt userext=new PUserExt(userid);
						userext.setAccount(userHash.get("account").toString());
						userext.setGroupid(userHash.get("groupid").toString());
						userext.setPasswd(passwordForm.getNew_pwd());
						userext.setRegtime(ParamUtil.parseDate(userHash.get("regtime").toString()));
						userext.setStatus(new Integer(1));
						session.update(userext);
						tx.commit();
						//刷新session
						request.getSession().setAttribute(Constants.SESSION_USER_DATA,userext);
						userext=null;
						status="Your password is changed!";
					} catch (HibernateException e) {
						// TODO 自动生成 catch 块
						e.printStackTrace();
						status="Your password changed failed!";
					} finally {
						try {
							SessionFactory.closeSession();
						} catch (HibernateException e1) {
							e1.printStackTrace();
						}
					}
				}else{
					status="Your old password is wrong!";
				}
				userHash=null;
				InfoTips infotips=new InfoTips();
				infotips.setTipsInfo(status);
				request.setAttribute("InfoTips",infotips);
			}
			return mapping.findForward("admin/password");
		}
	}

}