2014-03-21 03:01:40 +00:00
|
|
|
|
# encoding: utf-8
|
|
|
|
|
|
|
|
|
|
|
|
class SessionsController < Devise::SessionsController
|
|
|
|
|
|
prepend_before_filter :require_no_authentication, :only => [ :new, :create ]
|
|
|
|
|
|
|
|
|
|
|
|
require 'savon'
|
|
|
|
|
|
|
|
|
|
|
|
def create
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@SYS_USER = "rulingcom"
|
|
|
|
|
|
@SYS_PASS = "pxm87912tkx"
|
|
|
|
|
|
@LDAP_USER = params[:user][:user_id]
|
|
|
|
|
|
@LDAP_PASS = params[:user][:password]
|
|
|
|
|
|
|
|
|
|
|
|
if @LDAP_USER == 'rulingcom'
|
|
|
|
|
|
|
|
|
|
|
|
resource = User.first(conditions:{user_id: @LDAP_USER})
|
|
|
|
|
|
|
2014-04-08 10:28:27 +00:00
|
|
|
|
if !resource.blank? and resource.valid_password?(@LDAP_PASS)
|
2014-03-21 03:01:40 +00:00
|
|
|
|
|
|
|
|
|
|
resource_name = resource.class.to_s.downcase
|
|
|
|
|
|
sign_in(resource_name, resource)
|
|
|
|
|
|
redirect_to after_sign_in_path_for(resource)
|
|
|
|
|
|
|
2014-04-08 10:28:27 +00:00
|
|
|
|
elsif !resource.valid_password?(@LDAP_PASS)
|
|
|
|
|
|
|
|
|
|
|
|
flash[:error] = "密碼錯誤<br />password Local fail"
|
|
|
|
|
|
redirect_to :root
|
|
|
|
|
|
|
2014-03-21 03:01:40 +00:00
|
|
|
|
else
|
|
|
|
|
|
|
|
|
|
|
|
flash[:error] = "很抱歉,您無此權限或帳號登入本站,請洽本站管理員<br />Sorry, you don't have the account or authority to login. Please contact the website administrator."
|
|
|
|
|
|
redirect_to :root
|
|
|
|
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
else
|
|
|
|
|
|
|
|
|
|
|
|
client = Savon.client(wsdl: 'http://ap.ydu.edu.tw/LDAP_WS/RulingcomDataService.asmx?wsdl',filters: [:SYS_USER, :SYS_PASS, :LDAP_USER, :LDAP_PASS])
|
|
|
|
|
|
|
|
|
|
|
|
client.operations
|
|
|
|
|
|
|
|
|
|
|
|
response = client.call(:login_chk, message: {
|
|
|
|
|
|
"SYS_USER" => @SYS_USER,
|
|
|
|
|
|
"SYS_PASS" => @SYS_PASS,
|
|
|
|
|
|
"LDAP_USER" => @LDAP_USER,
|
|
|
|
|
|
"LDAP_PASS" => @LDAP_PASS,
|
|
|
|
|
|
"User_IP" => request.remote_ip
|
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
|
|
@datas = response.body[:login_chk_response][:login_chk_result][:string]
|
|
|
|
|
|
|
|
|
|
|
|
if !@datas[0].blank? and ( @datas[0] == 'P' or @datas[0] == 'U' ) #使用者帳號回傳P,單位帳號回傳U
|
|
|
|
|
|
|
|
|
|
|
|
resource = User.first(conditions:{user_id: @LDAP_USER})
|
|
|
|
|
|
|
|
|
|
|
|
if !resource.blank?
|
|
|
|
|
|
|
|
|
|
|
|
resource_name = resource.class.to_s.downcase
|
|
|
|
|
|
sign_in(resource_name, resource)
|
|
|
|
|
|
redirect_to after_sign_in_path_for(resource)
|
|
|
|
|
|
|
2014-05-15 03:54:39 +00:00
|
|
|
|
else #認證通過無帳號不通過
|
2014-03-21 03:01:40 +00:00
|
|
|
|
|
2014-05-15 03:54:39 +00:00
|
|
|
|
flash[:error] = "很抱歉,您無此權限或帳號登入本站,請洽本站管理員<br />Sorry, you don't have the account or authority to login. Please contact the website administrator."
|
|
|
|
|
|
redirect_to :root
|
2014-03-21 03:01:40 +00:00
|
|
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
else
|
|
|
|
|
|
flash[:error] = "很抱歉,您無此權限或帳號登入本站,請洽本站管理員<br />Sorry, you don't have the account or authority to login. Please contact the website administrator."
|
|
|
|
|
|
redirect_to :root
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
end
|
