public function save(Session $session) { $validator = Validator::make($this->request->request->all()); $validator->addRule('email', 'required|email', array('required' => '用户名必须填写', 'email' => '必须填写合法的Email')); $validator->addRule('password', 'required|len[6,16]', '密码', array('required' => '密码必须填写', 'len' => '密码格式不正确')); if (!$validator->validate()) { foreach ($validator->errors() as $value) { $session->addFlash('error', $value); } return Redirect::action('system/login'); } $email = $this->request->get('email'); $password = $this->request->get('password'); $user = \App\User::findByEmail($email); if ($user != NULL && \App\Foundation\Security::checkPassword($password, $user->password)) { $session->set('_h1cms_user_id', $user->id); $session->set('_h1cms_user_email', $email); return Redirect::action('system/dashboard')->with('success', '登录成功'); } else { return Redirect::action('system/login')->with('error', '登录失败'); } }