|
@@ -31,6 +31,24 @@ def register(request: BasicRequest, db: Session = Depends(get_db)):
|
|
|
if user is None:
|
|
|
return StandardResponse(code=FAILED, message="create user failed")
|
|
|
return StandardResponse(code=SUCCESS, message="create user success")
|
|
|
+ elif request.action == 'modifyPWD':
|
|
|
+ biz = UserBusiness(db)
|
|
|
+ request_password = request.get_param("password", "")
|
|
|
+ request_new_password = request.get_param("new_password", "")
|
|
|
+ session_id = request.get_param("session_id", "")
|
|
|
+
|
|
|
+ session = SessionBusiness(db)
|
|
|
+ user_id = session.get_session(session_id).user_id
|
|
|
+ user = biz.get_user(user_id)
|
|
|
+
|
|
|
+ if user is None:
|
|
|
+ return StandardResponse(code=FAILED, message="modify passward failed")
|
|
|
+ if not biz.verify_password(request_password, user.hashed_password):
|
|
|
+ return StandardResponse(code=FAILED, message="password error")
|
|
|
+
|
|
|
+ biz.update_user(user_id, password=request_new_password)
|
|
|
+ session.delete_session(session_id)
|
|
|
+ return StandardResponse(code=SUCCESS, message="modify passward success")
|
|
|
elif request.action =='login':
|
|
|
request_username = request.get_param("username", "")
|
|
|
request_password = request.get_param("password", "")
|