def changePassword(self, password, newpassword):
'''
修改用户密码
@param password:
@param newpassword:
@return:
'''
if not newpassword:
raise ex(u'新密码不能为空')
user = self.get_me()
if user and user.password == User.pwdhash(password, user.salt):
user.password = User.pwdhash(newpassword, user.salt)
user.save()
else:
raise ex(u'原密码不正确!')
def login(self, username, password):
"""
用户登录
@param username:
@param password:
@return:
"""
user = User.objects.filter(username=username).first()
if user and user.password == User.pwdhash(password, user.salt):
if user.status == User.STATUS_CANCELED:
raise ex(u'该用户已被锁定无法登陆')
self.session_set('me', user.get_json())
self.logAtion(ActionLog.ACTION_LOGIN)
logingoto = self.session_get_once('logingoto')
return obj2dic(user, ['id', 'username', 'token'],
{'goto': logingoto or '/xadmin/'})
else:
raise ex(u'用户名或密码错误')
