nelson.kai
/
GroupBy
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
182 MiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
GroupBy/04-程式設計/Trunk/Tool/AccountController.cs

387 lines
13 KiB
Raw Permalink Normal View History

[WHAT] 把團購代碼放到git上
2 years ago
  1. using DefenseWeb.Helper;
  2. using DefenseWeb.Models;
  3. using Newtonsoft.Json;
  4. using Newtonsoft.Json.Linq;
  5. using System;
  6. using System.Collections.Generic;
  7. using System.DirectoryServices;
  8. using System.DirectoryServices.AccountManagement;
  9. using System.Linq;
  10. using System.Web;
  11. using System.Web.Mvc;
  12. using System.Web.Security;
  15. namespace DefenseWeb.Controllers
  16. {
  17. [Authorize]
  18. public class AccountController : CustomControllerBase
  19. {
  20. List<adUrl> adUrl = new List<adUrl>()
  21. {
  22. new adUrl() { name = "台北", url = "192.168.6.128" },
  23. };
  26. //
  27. // GET: /Account/Login
  28. [OutputCache(Duration = 60)]
  29. [AllowAnonymous]
  30. public ActionResult Login(string returnUrl)
  31. {
  32. SelectList selectList = new SelectList(adUrl, "url", "name");
  33. ViewBag.adUrl = selectList;
  35. if (User.Identity.IsAuthenticated)
  36. {
  37. return RedirectToAction("Index", "Home");
  38. }
  40. ViewBag.ReturnUrl = returnUrl;
  42. return View();
  43. }
  45. //
  46. // POST: /Account/Login
  47. [HttpPost]
  48. [AllowAnonymous]
  49. [Obsolete]
  50. public ActionResult Login(LoginViewModel model, string returnUrl)
  51. {
  52. SelectList selectList = new SelectList(adUrl, "url", "name");
  53. string sMsg = null;
  54. int iDiffDay = 0;
  56. ViewBag.adUrl = selectList;
  58. if (!ModelState.IsValid)
  59. {
  60. return View(model);
  61. }
  63. #if DEBUG
  64. var result = IsValidationForAD(model.Domain, model.Username, model.Password, out sMsg, out iDiffDay);
  65. #else
  66. var result = IsValidationForAD(model.Domain, model.Username, model.Password ,out sMsg, out iDiffDay);
  67. #endif
  69. if (sMsg != null)
  70. {
  71. ModelState.AddModelError("", sMsg);
  72. return View(model);
  73. }
  75. if (result)
  76. {
  77. string url = new ConfigHelper().GetWebConfig("UserInfoUrl");
  78. var data = CallRemote(url, true);
  79. var obj = JObject.Parse(data);
  80. if (obj.GetValue("Success").ToObject<bool>() == true && obj["UserData"].Type == JTokenType.Null)
  81. {
  82. ModelState.AddModelError("", "找不到該員工資料/Cannot find this employee profile");
  83. return View(model);
  84. }
  85. else if (obj.GetValue("Success").ToObject<bool>() == false)
  86. {
  87. ModelState.AddModelError("", "伺服器發生問題,無法登入/Server problem, unable to log in");
  88. return View(model);
  89. }
  91. //檢查是否已填寫問卷
  92. url = new ConfigHelper().GetWebConfig("DepartureUrl");
  93. var departure_obj = JObject.Parse(CallRemote(url, true));
  95. if (departure_obj.GetValue("desc") != null && !string.IsNullOrEmpty(departure_obj.GetValue("desc").ToString()))
  96. {
  97. ModelState.AddModelError("", "伺服器發生問題,無法登入/Server problem, unable to log in");
  98. return View(model);
  99. }
  101. if (!departure_obj.GetValue("Success").ToObject<bool>())
  102. {
  103. ModelState.AddModelError("", "已離職人員/Terminated staff");
  104. return View(model);
  105. }
  107. //檢查是否已填寫問卷
  108. url = new ConfigHelper().GetWebConfig("ExistSurveyUrl");
  109. var survey_data = CallRemote(url, true);
  110. var survey_obj = JObject.Parse(survey_data);
  112. if (survey_obj.GetValue("desc") != null && !string.IsNullOrEmpty(survey_obj.GetValue("desc").ToString()))
  113. {
  114. ModelState.AddModelError("", "伺服器發生問題,無法登入/Server problem, unable to log in");
  115. return View(model);
  116. }
  118. if (!survey_obj.GetValue("Success").ToObject<bool>())
  119. {
  120. ModelState.AddModelError("", "今天已經填過問卷/Have completed the questionnaire today");
  121. return View(model);
  122. }
  124. obj["UserData"]["password"] = model.Password;
  125. obj["UserData"]["domain"] = model.Domain;
  126. obj["UserData"]["DiffDay"] = iDiffDay;
  128. FormsAuthentication.SetAuthCookie(model.Username, true, FormsAuthentication.FormsCookiePath);
  129. FormsAuthenticationTicket authTicket = new FormsAuthenticationTicket
  130. (
  131. 1, model.Username, DateTime.Now, DateTime.Now.AddMinutes(15), false, obj["UserData"].ToString(), FormsAuthentication.FormsCookiePath);
  134. //將 Ticket 加密
  135. var encTicket = FormsAuthentication.Encrypt(authTicket);
  137. Response.Cookies.Add(new HttpCookie(FormsAuthentication.FormsCookieName, encTicket));
  140. return RedirectToLocal(returnUrl);
  141. }
  142. else
  143. {
  144. ModelState.AddModelError("", "登入嘗試失試。");
  145. return View(model);
  147. }
  151. }
  153. public static class ADUserProperties
  154. {
  155. public const String OBJECTCLASS = "objectClass";
  157. public const String CONTAINERNAME = "cn";
  159. public const String LASTNAME = "sn";
  161. public const String COUNTRYNOTATION = "c";
  163. public const String CITY = "l";
  165. public const String STATE = "st";
  167. public const String TITLE = "title";
  169. public const String POSTALCODE = "postalCode";
  171. public const String PHYSICALDELIVERYOFFICENAME = "physicalDeliveryOfficeName";
  173. public const String FIRSTNAME = "givenName";
  175. public const String MIDDLENAME = "initials";
  177. public const String DISTINGUISHEDNAME = "distinguishedName";
  179. public const String INSTANCETYPE = "instanceType";
  181. public const String WHENCREATED = "whenCreated";
  183. public const String WHENCHANGED = "whenChanged";
  185. public const String DISPLAYNAME = "displayName";
  187. public const String USNCREATED = "uSNCreated";
  189. public const String MEMBEROF = "memberOf";
  191. public const String USNCHANGED = "uSNChanged";
  193. public const String COUNTRY = "co";
  195. public const String DEPARTMENT = "department";
  197. public const String COMPANY = "company";
  199. public const String PROXYADDRESSES = "proxyAddresses";
  201. public const String STREETADDRESS = "streetAddress";
  203. public const String DIRECTREPORTS = "directReports";
  205. public const String NAME = "name";
  207. public const String OBJECTGUID = "objectGUID";
  209. public const String USERACCOUNTCONTROL = "userAccountControl";
  211. public const String BADPWDCOUNT = "badPwdCount";
  213. public const String CODEPAGE = "codePage";
  215. public const String COUNTRYCODE = "countryCode";
  217. public const String BADPASSWORDTIME = "badPasswordTime";
  219. public const String LASTLOGOFF = "lastLogoff";
  221. public const String LASTLOGON = "lastLogon";
  223. public const String PWDLASTSET = "pwdLastSet";
  225. public const String PRIMARYGROUPID = "primaryGroupID";
  227. public const String OBJECTSID = "objectSid";
  229. public const String ADMINCOUNT = "adminCount";
  231. public const String ACCOUNTEXPIRES = "accountExpires";
  233. public const String LOGONCOUNT = "logonCount";
  235. public const String LOGINNAME = "sAMAccountName";
  237. public const String SAMACCOUNTTYPE = "sAMAccountType";
  239. public const String SHOWINADDRESSBOOK = "showInAddressBook";
  241. public const String LEGACYEXCHANGEDN = "legacyExchangeDN";
  243. public const String USERPRINCIPALNAME = "userPrincipalName";
  245. public const String EXTENSION = "ipPhone";
  247. public const String SERVICEPRINCIPALNAME = "servicePrincipalName";
  249. public const String OBJECTCATEGORY = "objectCategory";
  251. public const String DSCOREPROPAGATIONDATA = "dSCorePropagationData";
  253. public const String LASTLOGONTIMESTAMP = "lastLogonTimestamp";
  255. public const String EMAILADDRESS = "mail";
  257. public const String MANAGER = "manager";
  259. public const String MOBILE = "mobile";
  261. public const String PAGER = "pager";
  263. public const String FAX = "facsimileTelephoneNumber";
  265. public const String HOMEPHONE = "homePhone";
  267. public const String MSEXCHUSERACCOUNTCONTROL = "msExchUserAccountControl";
  269. public const String MDBUSEDEFAULTS = "mDBUseDefaults";
  271. public const String MSEXCHMAILBOXSECURITYDESCRIPTOR = "msExchMailboxSecurityDescriptor";
  273. public const String HOMEMDB = "homeMDB";
  275. public const String MSEXCHPOLICIESINCLUDED = "msExchPoliciesIncluded";
  277. public const String HOMEMTA = "homeMTA";
  279. public const String MSEXCHRECIPIENTTYPEDETAILS = "msExchRecipientTypeDetails";
  281. public const String MAILNICKNAME = "mailNickname";
  283. public const String MSEXCHHOMESERVERNAME = "msExchHomeServerName";
  285. public const String MSEXCHVERSION = "msExchVersion";
  287. public const String MSEXCHRECIPIENTDISPLAYTYPE = "msExchRecipientDisplayType";
  289. public const String MSEXCHMAILBOXGUID = "msExchMailboxGuid";
  291. public const String NTSECURITYDESCRIPTOR = "nTSecurityDescriptor";
  293. }
  296. private bool IsValidationForAD(string url, string Username, string Password, out string o_sMsg, out int i_diffDay)
  297. {
  298. o_sMsg = null;
  299. bool isSuccess = false;
  300. i_diffDay = 0;
  302. try
  303. {
  304. string srvr = url;
  305. srvr = "LDAP://" + srvr;
  308. PrincipalContext ctx = new PrincipalContext(ContextType.Domain, url, Username, Password);
  310. var user = UserPrincipal.FindByIdentity(ctx, Username);
  312. if (user != null)
  313. {
  314. DirectoryEntry entry = (DirectoryEntry)user.GetUnderlyingObject();
  316. List<string> lsPropName = (from x in typeof(ADUserProperties).GetFields()
  317. select x.GetValue(typeof(string)).ToString()).ToList();
  319. Dictionary<string, object> dicADInfo = new Dictionary<string, object>();
  320. foreach (string sPropName in lsPropName)
  321. {
  322. if (entry.Properties.Contains(sPropName))
  323. {
  324. dicADInfo.Add(sPropName, entry.Properties[sPropName].Value);
  325. }
  326. }
  328. var expiresDate = (DateTime)entry.InvokeGet("PasswordExpirationDate");
  329. i_diffDay = new TimeSpan(expiresDate.Ticks - DateTime.Now.Ticks).Days;
  331. isSuccess = true;//verify password is succeed!
  332. }
  333. }
  334. catch (DirectoryServicesCOMException ex)
  335. {
  336. if (ex.ExtendedErrorMessage.IndexOf("data 532,") > -1)
  337. {
  338. o_sMsg = @"您的AD 密碼已過期,請使用公司電腦設備到 eip.chipmos.com 網站更新密碼。<a href='http://eip.chipmos.com/' target='_blank'>eip.chipmos.com</a>
  339. Your AD password has expired. Please go to <a href='http://eip.chipmos.com/' target='_blank'>eip.chipmos.com</a> web site to change your password by using CHIPMOS computer equipment.";
  340. }
  341. else
  342. {
  343. o_sMsg = ex.Message;
  344. }
  346. Logger.Error(string.Format("sMsg={0},para={1} ex.StackTrace={2}, innerException={3} ", ex.Message, JsonConvert.SerializeObject(new { url = url, Username = Username, Password = Password, msg = ex.ExtendedErrorMessage }), ex.StackTrace, ex.InnerException));
  348. }
  349. return isSuccess;
  350. }
  351. private ActionResult RedirectToLocal(string returnUrl)
  352. {
  354. if (Url.IsLocalUrl(returnUrl))
  355. {
  356. return Redirect(returnUrl);
  357. }
  359. return RedirectToAction("Index", "Home");
  360. }
  362. //
  363. // POST: /Account/LogOff
  364. [HttpPost]
  365. [ValidateAntiForgeryToken]
  366. public ActionResult LogOff()
  367. {
  368. FormsAuthentication.SignOut();
  369. return RedirectToAction("Index", "Home");
  370. }
  373. public ActionResult GetUserData()
  374. {
  375. //todo
  376. return Content(CallRemote(""));
  377. }
  380. public ActionResult WriteUserData()
  381. {
  382. //todo
  383. // CallRemote("");
  384. return Content(CallRemote(""));
  385. }
  387. }
  388. }