public function actionLogin() { $model = new LoginForm(); if (isset($_POST['LoginForm'])) { $model->attributes = Yii::app()->request->getPost('LoginForm'); if ($model->validate() && $model->login() && Yii::app()->user->isGuest == false) { if (empty(Yii::app()->user->returnUrl)) { if (!YII_DEBUG && $model->login_password == '123456') { $this->setFlashMessage('为了网站数据的安全性, 请立即更改您的用户密码', 'warn'); $this->redirect(array('password')); } else { $this->redirect(Yii::app()->homeUrl); } } else { $this->redirect(Yii::app()->user->returnUrl); } } else { ManagerLog::logCurrentUserAction(0, '登录', strtr("username: {username} \n password: {password}", array("{username}" => $model->loginName, "{password}" => $model->loginPassword))); } } $this->layout = false; $this->render('login', array('model' => $model)); }
public function actionDelete() { if (Yii::app()->user->getIsSuperUser() == false && Yii::app()->user->checkAccess('deleteManager') == false) { throw new CHttpException(403); } $id = Yii::app()->request->getQuery('id'); $manager = Manager::model()->findByPk($id); if (is_null($manager)) { throw new CHttpException(403); } if ($manager->is_admin) { throw new CHttpException(403, strtr('管理员{name}为默认系统管理员, 不允许被删除.', array('{name}' => $manager->login_name))); } $flag = $manager->delete(); ManagerLog::logCurrentUserAction($flag, '删除管理员', $manager->login_name); }
protected function beforeLogout() { ManagerLog::logCurrentUserAction(1, '退出'); return true; }