From 77b983759956322fcd2259de4f1094217535dcdb Mon Sep 17 00:00:00 2001
From: zhaoqingang <zhaoqg0118@163.com>
Date: 星期四, 13 二月 2025 17:59:08 +0800
Subject: [PATCH] 登录问题优化

---
 app/api/user.py |   20 ++++++++++++--------
 1 files changed, 12 insertions(+), 8 deletions(-)

diff --git a/app/api/user.py b/app/api/user.py
index e9331c6..52d1e0f 100644
--- a/app/api/user.py
+++ b/app/api/user.py
@@ -4,7 +4,7 @@
 from app.models.base_model import get_db
 from app.models.user import PageParameter, UserStatus, UserInfo, LoginData, UserPassword, UserDept
 from app.models.user_model import UserModel
-from app.service.auth import is_valid_password, verify_password
+from app.service.auth import is_valid_password, verify_password, password_rsa
 from app.service.user import get_user_list, edit_user_status, delete_user_data, create_user, edit_user_data, \
     edit_user_pwd, get_user_info, get_user_routers, get_user_menus, get_user_permission, get_user_dept, change_user_pwd, \
     user_data_service, edit_user_dept
@@ -23,6 +23,8 @@
 async def add_user(user: UserInfo, current_user: UserModel = Depends(get_current_user), db=Depends(get_db)):
     if not user.userName:
         return Response(code=400, msg="The userName cannot be empty!")
+    if "@" in user.username:
+        return Response(code=400, msg="Username cannot contain @")
     if user.pwd:
         if not is_valid_password(user.pwd):
             return Response(code=400, msg="The password must be at least 8 and contain both numbers and letters")
@@ -32,11 +34,11 @@
     pwd = user.pwd
     if not pwd:
         pwd = "basic123456"
-    is_create = await create_user(db, user.userName, user.email, user.phone, user.loginName, pwd, user.roles,
+    user_flag = await create_user(db, user.userName, user.email, user.phone, user.loginName, pwd, user.roles,
                                   user.groups, current_user.id)
-    if not is_create:
-        return Response(code=500, msg="user create failure", data={})
-    return Response(code=200, msg="user create successfully", data={})
+    # if not is_create:
+    #     return Response(code=500, msg="user create failure", data={})
+    return Response(code=200, msg="user create successfully", data={"userFlag": user_flag})
 
 
 @user_router.put("/edit_user", response_model=Response)
@@ -87,11 +89,13 @@
     user_info = db.query(UserModel).filter(UserModel.id==current_user.id).first()
     if not user_info:
         return Response(code=401, msg="Incorrect change password !")
-    if not verify_password(user.oldPassword, user_info.hashed_password):
+    old_password = await password_rsa(user.oldPassword)
+    new_password = await password_rsa(user.newPassword)
+    if not verify_password(old_password, user_info.hashed_password):
         return Response(code=400, msg="Incorrect password !")
-    if not is_valid_password(user.newPassword):
+    if not is_valid_password(new_password):
         return Response(code=400, msg="The password must be at least 8 and contain both numbers and letters")
-    is_edit = await change_user_pwd(db, user_info.id, user.newPassword)
+    is_edit = await change_user_pwd(db, user_info.id, new_password)
     if not is_edit:
         return Response(code=500, msg="user pwd change failure", data={})
     return Response(code=200, msg="user pwd change success", data={})

--
Gitblit v1.8.0