普通用户无权限不能登陆

Signed-off-by: lijunqing <lijunqing@dashoo.cn>

src/dashoo.cn/backend/api/controllers/token.go

@@ -2,6 +2,7 @@ package controllers
 
 import (
 	"encoding/json"
+	"strconv"
 	"strings"
 
 	"github.com/astaxie/beego"
@@ -45,6 +46,13 @@ func (this *TokenController) Post() {
 		this.ServeJSON()
 	} else {
 		if svc.VerifyUser3DES(user4CreateToken.Username, user4CreateToken.Password, &user) {
+			sql := " UserName='" + user4CreateToken.Username + "'"
+			var baseUser userRole.Base_User
+			svc.GetEntity(&baseUser,sql)
+			res:=utils.RBAC.GetRolesForUserInDomain("uid_"+strconv.Itoa(baseUser.Id),utils.DOMAIN)
+			if len(res)<=0{
+				this.Abort("777")
+			}
 			userToken, err := models.CreateToken(user4CreateToken.Username)
 
 			if err != nil {

src/dashoo.cn/frontend_web/src/pages/login.vue

@@ -368,8 +368,11 @@ export default class Login extends Vue {
           }
         }
       } catch (e) {
-        // this.$message.warning(e.message)
-        this.$message.warning("账号或密码错误");
+        if(e.response.status==777){
+          this.$message.warning("您无权限登录本系统");
+        }else{
+          this.$message.warning("账号或密码错误");
+        }
       } finally {
         this.logging = false;
       }