public.jsp
2.33 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
<%@ page language="java" contentType="text/html; charset=UTF-8" %>
<%@ page import="weaver.general.Util"%>
<%@ page import="java.util.Map"%>
<%@ page import="com.weaver.formmodel.mobile.utils.MobileCommonUtil"%>
<%@ page import="weaver.mobile.plugin.ecology.service.AuthService"%>
<%@ page import="com.weaver.formmodel.mobile.security.SecurityUtil"%>
<%@ page import="com.weaver.formmodel.mobile.MobileModeConfig"%>
<%
String userid;
String url;
String from = Util.null2String(request.getParameter("from"));
if(from.equals("anonymous")){
MobileModeConfig mConfig = MobileModeConfig.getInstance();
if(!mConfig.isAnonymousAccessEnabled()){
out.println("anonymous access is not enabled");
return;
}
userid = mConfig.getAnonymousMappingUser();
if("".equals(userid)){
out.println("mapping user is empty");
return;
}
url = Util.null2String(request.getParameter("url"));//"/mobilemode/mobile/view.jsp?appid=23";
if("".equals(url)){
out.println("url is empty");
return;
}
url = SecurityUtil.decrypt(url);
if(url.equals("") || !url.startsWith("/mobilemode/")){
out.println("illegal url:" + url);
return;
}
}else if(from.equals("QRCode")){
url = Util.null2String(request.getParameter("url"));//"/mobilemode/mobile/view.jsp?appid=23";
if("".equals(url)){
out.println("url is empty");
return;
}
url = SecurityUtil.decrypt(url);
String[] arr = url.split(";");
if(arr.length != 3){
out.println("illegal url:" + url);
return;
}
int a1 = Util.getIntValue(arr[0], -1);
int a2 = Util.getIntValue(arr[1], -1);
long a3 = (long)Util.getDoubleValue(arr[2], -1);
if(a1 == -1 || a2 == -1 || a3 == -1){
out.println("illegal url:" + url);
return;
}
userid = String.valueOf(a1);
url = "/mobilemode/appHomepageViewWrap.jsp?appHomepageId=" + a2;
long timeout = 1000 * 60 * 10;
if((a3 + timeout) < System.currentTimeMillis()){
out.println("二维码已过期");
return;
}
}else{
out.println("from is empty or unrecognized");
return;
}
String ip = MobileCommonUtil.getClientIp(request);
AuthService as = new AuthService();
Map result = as.login(userid, "", ip);
String message = (String)result.get("message");
if(!"1".equals(message)){
out.println("mapping user login failed");
return;
}
String sessionkey = (String)result.get("sessionkey");
url += "&sessionkey="+sessionkey;
request.getRequestDispatcher(url).forward(request, response);
%>