From 78629720f77c6c7b58f655322b294b6f3b4bb9cd Mon Sep 17 00:00:00 2001
From: shimingxy <shimingxy@163.com>
Date: Sun, 8 Dec 2019 19:13:29 +0800
Subject: [PATCH] changeUserPassword fix

---
 .../org/maxkey/dao/service/UserInfoService.java     |  4 ++++
 .../org/maxkey/web/contorller/SafeController.java   | 13 ++++++++-----
 .../templates/views/layout/nav_primary.ftl          |  8 +++++---
 .../templates/views/safe/changeAppLoginPasswod.ftl  |  7 +------
 .../templates/views/safe/changePassword.ftl         |  7 +------
 5 files changed, 19 insertions(+), 20 deletions(-)

diff --git a/maxkey-dao/src/main/java/org/maxkey/dao/service/UserInfoService.java b/maxkey-dao/src/main/java/org/maxkey/dao/service/UserInfoService.java
index af049d3bf..7b4974c7c 100644
--- a/maxkey-dao/src/main/java/org/maxkey/dao/service/UserInfoService.java
+++ b/maxkey-dao/src/main/java/org/maxkey/dao/service/UserInfoService.java
@@ -10,6 +10,8 @@ import org.maxkey.domain.UserInfo;
 import org.maxkey.util.DateUtils;
 import org.maxkey.util.StringUtils;
 import org.maxkey.web.WebContext;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.stereotype.Service;
@@ -21,6 +23,7 @@ import org.springframework.stereotype.Service;
  */
 @Service
 public class UserInfoService extends JpaBaseService<UserInfo> {
+	final static Logger _logger = LoggerFactory.getLogger(UserInfoService.class);
 	
 	@Autowired
 	private PasswordEncoder passwordEncoder;
@@ -107,6 +110,7 @@ public class UserInfoService extends JpaBaseService<UserInfo> {
 			}
 			String password = passwordEncoder.encode(PasswordReciprocal.getInstance().rawPassword(userInfo.getUsername(), userInfo.getPassword()));
 			userInfo.setDecipherable(PasswordReciprocal.getInstance().rawPassword(userInfo.getUsername(), userInfo.getPassword()));
+			_logger.debug("decipherable : "+userInfo.getDecipherable());
 			userInfo.setPassword(password);
 			userInfo.setPasswordLastSetTime(DateUtils.getCurrentDateTimeAsString());
 			
diff --git a/maxkey-web-maxkey/src/main/java/org/maxkey/web/contorller/SafeController.java b/maxkey-web-maxkey/src/main/java/org/maxkey/web/contorller/SafeController.java
index b6e29cdba..ab10837ec 100644
--- a/maxkey-web-maxkey/src/main/java/org/maxkey/web/contorller/SafeController.java
+++ b/maxkey-web-maxkey/src/main/java/org/maxkey/web/contorller/SafeController.java
@@ -46,10 +46,11 @@ public class SafeController {
 			@RequestParam("newPassword") String newPassword,
 			@RequestParam("confirmPassword") String confirmPassword) {
 		
-			changeUserPassword(oldPassword,newPassword,confirmPassword);
-			
-			return  new Message(WebContext.getI18nValue(OPERATEMESSAGE.UPDATE_ERROR),MessageType.error);
-		
+			if(changeUserPassword(oldPassword,newPassword,confirmPassword)) {
+				return  new Message(WebContext.getI18nValue(OPERATEMESSAGE.UPDATE_SUCCESS),MessageType.success);
+			}else {
+				return  new Message(WebContext.getI18nValue(OPERATEMESSAGE.UPDATE_ERROR),MessageType.error);
+			}	
 	}
 
 	@RequestMapping(value="/changeExpiredPassword") 
@@ -91,9 +92,11 @@ public class SafeController {
 									String newPassword,
 									String confirmPassword){
 		UserInfo userInfo =WebContext.getUserInfo();
+		_logger.debug("decipherable : "+userInfo.getDecipherable());
+		_logger.debug("decipherable : "+PasswordReciprocal.getInstance().rawPassword(userInfo.getUsername(), userInfo.getPassword()));
 		if(newPassword.equals(confirmPassword)){
 			if(oldPassword==null || 
-					userInfo.getPassword().equals(passwordEncoder.encode(PasswordReciprocal.getInstance().rawPassword(userInfo.getUsername(),oldPassword)))){
+					passwordEncoder.matches(PasswordReciprocal.getInstance().rawPassword(userInfo.getUsername(),oldPassword), userInfo.getPassword())){
 				userInfo.setPassword(newPassword);
 				userInfoService.changePassword(userInfo);
 				//TODO syncProvisioningService.changePassword(userInfo);
diff --git a/maxkey-web-maxkey/src/main/resources/templates/views/layout/nav_primary.ftl b/maxkey-web-maxkey/src/main/resources/templates/views/layout/nav_primary.ftl
index 90e7cbb0f..b6ab759cd 100644
--- a/maxkey-web-maxkey/src/main/resources/templates/views/layout/nav_primary.ftl
+++ b/maxkey-web-maxkey/src/main/resources/templates/views/layout/nav_primary.ftl
@@ -4,9 +4,6 @@
 		<li  id="nav_primay_11"  class="nav_primay_level primaryleft"  xpath="">
 			<a   href="<@base/>/appList">我的应用</a>
 		</li>
-		<li  id="nav_primay_12"  class="nav_primay_level primaryleft"  xpath="">
-			<a   href="<@base/>/socialsignon/list">认证关联</a>
-		</li>
 		<li  id="nav_primay_13"  class="nav_primay_level primaryleft"  xpath="">
 			<a   href="<@base/>/safe/forward/setting">安全设置</a>
 			<div id="nav_child_1301"  class="nav_second_child">
@@ -15,6 +12,11 @@
 						<a   href="<@base/>/safe/forward/setting">安全设置</a>
 					</li>
 				</ul>
+				<ul>
+					<li id="nav_second_1301" class="nav_second_level">
+						<a   href="<@base/>/socialsignon/list">认证关联</a>
+					</li>
+				</ul>
 				<ul>
 					<li id="nav_second_1302" class="nav_second_level">
 						<a   href="<@base/>/safe/forward/changePasswod">密码修改</a>
diff --git a/maxkey-web-maxkey/src/main/resources/templates/views/safe/changeAppLoginPasswod.ftl b/maxkey-web-maxkey/src/main/resources/templates/views/safe/changeAppLoginPasswod.ftl
index a9ca4189e..3c78738ee 100644
--- a/maxkey-web-maxkey/src/main/resources/templates/views/safe/changeAppLoginPasswod.ftl
+++ b/maxkey-web-maxkey/src/main/resources/templates/views/safe/changeAppLoginPasswod.ftl
@@ -37,24 +37,19 @@
 				<th><@locale code="login.password.oldPassword" /> :</th>
 				<td>
 					<input  class="form-control"  type="password" id="oldPassword" name="oldPassword" class="required" title="" value=""/>
-					<b class="orange">*</b>
-					<label for="oldPassword"></label>
+
 				</td>
 			</tr>
 			<tr>
 				<th><@locale code="login.password.newPassword" />:</th>
 				<td>
 					<input  class="form-control"  type="password" id="newPassword" name="newPassword" class=" required" title="" value=""/>
-					<b class="orange">*</b>
-					<label for="newPassword"></label>
 				</td>
 			</tr>
 			<tr>
 				<th><@locale code="login.password.confirmPassword" />:</th>
 				<td nowrap>
 					<input  class="form-control"  type="password" id="confirmPassword" name="confirmPassword" class="{ required: true, equalTo: '#newPassword' }" title="" value=""/>
-					<b class="orange">*</b>
-					<label for="confirmPassword"></label>
 				</td>
 			</tr>
 			<tr>
diff --git a/maxkey-web-maxkey/src/main/resources/templates/views/safe/changePassword.ftl b/maxkey-web-maxkey/src/main/resources/templates/views/safe/changePassword.ftl
index c25f465ad..bbdba0446 100644
--- a/maxkey-web-maxkey/src/main/resources/templates/views/safe/changePassword.ftl
+++ b/maxkey-web-maxkey/src/main/resources/templates/views/safe/changePassword.ftl
@@ -37,24 +37,19 @@
 				<th><@locale code="login.password.oldPassword" /> :</th>
 				<td>
 					<input  class="form-control"  type="password" id="oldPassword" name="oldPassword" class="required" title="" value=""/>
-					<b class="orange">*</b>
-					<label for="oldPassword"></label>
 				</td>
 			</tr>
 			<tr>
 				<th><@locale code="login.password.newPassword" />:</th>
 				<td>
 					<input  class="form-control"  type="password" id="newPassword" name="newPassword" class=" required" title="" value=""/>
-					<b class="orange">*</b>
-					<label for="newPassword"></label>
+
 				</td>
 			</tr>
 			<tr>
 				<th><@locale code="login.password.confirmPassword" />:</th>
 				<td nowrap>
 					<input  class="form-control"  type="password" id="confirmPassword" name="confirmPassword" class="{ required: true, equalTo: '#newPassword' }" title="" value=""/>
-					<b class="orange">*</b>
-					<label for="confirmPassword"></label>
 				</td>
 			</tr>
 			<tr>