public function actionLogin()
{
$model = new LoginForm();
if (isset($_POST['LoginForm'])) {
$model->attributes = Yii::app()->request->getPost('LoginForm');
if ($model->validate() && $model->login() && Yii::app()->user->isGuest == false) {
if (empty(Yii::app()->user->returnUrl)) {
if (!YII_DEBUG && $model->login_password == '123456') {
$this->setFlashMessage('为了网站数据的安全性, 请立即更改您的用户密码', 'warn');
$this->redirect(array('password'));
} else {
$this->redirect(Yii::app()->homeUrl);
}
} else {
$this->redirect(Yii::app()->user->returnUrl);
}
} else {
ManagerLog::logCurrentUserAction(0, '登录', strtr("username: {username} \n password: {password}", array("{username}" => $model->loginName, "{password}" => $model->loginPassword)));
}
}
$this->layout = false;
$this->render('login', array('model' => $model));
}
public function actionDelete()
{
if (Yii::app()->user->getIsSuperUser() == false && Yii::app()->user->checkAccess('deleteManager') == false) {
throw new CHttpException(403);
}
$id = Yii::app()->request->getQuery('id');
$manager = Manager::model()->findByPk($id);
if (is_null($manager)) {
throw new CHttpException(403);
}
if ($manager->is_admin) {
throw new CHttpException(403, strtr('管理员{name}为默认系统管理员, 不允许被删除.', array('{name}' => $manager->login_name)));
}
$flag = $manager->delete();
ManagerLog::logCurrentUserAction($flag, '删除管理员', $manager->login_name);
}
protected function beforeLogout()
{
ManagerLog::logCurrentUserAction(1, '退出');
return true;
}
