fix：登录密码忽略大小写

ffd41ff4 · songzhenmin · 5f27f44a · ffd41ff4 · ffd41ff4 · ffd41ff4
Commit ffd41ff4 authored Jun 15, 2021 by songzhenmin
4 changed files
--- a/hs-admin/src/main/java/com/hs/admin/common/utils/TokenUtil.java
+++ b/hs-admin/src/main/java/com/hs/admin/common/utils/TokenUtil.java
@@ -46,7 +46,7 @@ public class TokenUtil {
     */
    public static boolean checkToken(String token) {
        SysUser user = (SysUser)RedisUtil.get(token);
-        boolean result = user != null && JWTUtil.verifier(token,user.getPassword());
+        boolean result = user != null && JWTUtil.verifier(token,String.valueOf(user.getId()));
        if(result){
            RedisUtil.expire(token,TOKEN_TIME_OUT);
        }

--- a/hs-admin/src/main/java/com/hs/admin/service/impl/LoginServiceImpl.java
+++ b/hs-admin/src/main/java/com/hs/admin/service/impl/LoginServiceImpl.java
@@ -32,8 +32,8 @@ public class LoginServiceImpl implements LoginService {
        LoginInfo loginInfo = new LoginInfo();

        SysUser user = userServiceImpl.findByLoginName(logName);
-        if(user != null && user.getPassword().equals(AESUtil.encrypt(password))){
-            String token = TokenUtil.getToken(AESUtil.encrypt(password),user);
+        if(user != null && AESUtil.decrypt(user.getPassword()).equalsIgnoreCase(password)){
+            String token = TokenUtil.getToken(String.valueOf(user.getId()),user);
            //修改ip以及最后登录时间
            user.setLastIp(ip);
            user.setLastTime(new Date());

--- a/hs-api/src/main/java/com/hs/api/common/utils/TokenUtil.java
+++ b/hs-api/src/main/java/com/hs/api/common/utils/TokenUtil.java
@@ -64,7 +64,7 @@ public class TokenUtil {
     */
    public static boolean checkToken(String token) {
        SysUser user = (SysUser)RedisUtil.get(token);
-        boolean result = user != null && JWTUtil.verifier(token,user.getPassword());
+        boolean result = user != null && JWTUtil.verifier(token,String.valueOf(user.getId()));
        if(result){
            RedisUtil.expire(token,TOKEN_TIME_OUT);
        }

--- a/hs-api/src/main/java/com/hs/api/service/Impl/LoginServiceImpl.java
+++ b/hs-api/src/main/java/com/hs/api/service/Impl/LoginServiceImpl.java
@@ -64,8 +64,8 @@ public class LoginServiceImpl implements LoginService {
        if(sysConfigService.getStateByKey(SysConfigKeyType.PWD_TIME_LIMIT.getCode())
                && DateUtils.getDaysBetween(user.getLastUpdatePwdTime(), new Date()) > 90)
            throw new DBConfigurationError("您已经超过90天没有更换密码，请修改密码后再登录！");
-        if (user != null && user.getPassword().equals(AESUtil.encrypt(password)) && (user.getMacAddress() == null || user.getMacAddress().equals(macAddrss))) {
-            String token = TokenUtil.getToken(AESUtil.encrypt(password), user);
+        if (user != null && AESUtil.decrypt(user.getPassword()).equalsIgnoreCase(password) && (user.getMacAddress() == null || user.getMacAddress().equals(macAddrss))) {
+            String token = TokenUtil.getToken(String.valueOf(user.getId()), user);
            setUserTokenList(token, user);
            //修改ip以及最后登录时间、MAC地址
            user.setLastIp(ip);
@@ -172,7 +172,7 @@ public class LoginServiceImpl implements LoginService {
    public boolean updatePass(String logName, String oldPassword, String newPassword) {
        int result = 0;
        SysUser user = userServiceImpl.findByLoginName(logName);
-        if (user != null && user.getPassword().equals(AESUtil.encrypt(oldPassword))) {
+        if (user != null && AESUtil.decrypt(user.getPassword()).equalsIgnoreCase(oldPassword)) {
            user.setPassword(AESUtil.encrypt(newPassword));
            user.setLastUpdatePwdTime(new Date());
            result = sysUserMapper.updateByPrimaryKey(user);