github
/
jumpserver
mirror of https://github.com/jumpserver/jumpserver
1
0
Fork 0
Code Issues Releases Wiki Activity

feat(authentication):登录表单仅提交时加密

pull/4639/head
peijianbo 2020-09-14 10:47:22 +08:00 committed by Jiangjie.Bai
parent fe502cbe41
commit 1299f3da75
2 changed files with 45 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

31
apps/authentication/templates/authentication/login.html
View File

@ -46,7 +46,7 @@
<div> <div>
{{ form.captcha }} {{ form.captcha }}
</div> </div>
<button type="submit" class="btn btn-primary block full-width m-b" onclick="doLogin();return false;">{% trans 'Login' %}</button> <button id="submit-id" type="button" class="btn btn-primary block full-width m-b" onclick="doLogin()">{% trans 'Login' %}</button>
{% if demo_mode %} {% if demo_mode %}
<p class="text-muted font-bold" style="color: red"> <p class="text-muted font-bold" style="color: red">
@ -82,12 +82,27 @@
return jsencrypt.encrypt(password); //加密 return jsencrypt.encrypt(password); //加密
} }
function doLogin() { function doLogin() {
//公钥加密 var rsaPublicKey = "{{ rsa_public_key }}";
var rsaPublicKey = "{{ rsa_public_key }}" var password =$('#password').val();
var password =$('#password').val(); //明文密码 var passwordEncrypted = encryptLoginPassword(password, rsaPublicKey);
var passwordEncrypted = encryptLoginPassword(password, rsaPublicKey) var serialize_array = $('#form').serializeArray();
$('#password').val(passwordEncrypted); //返回给密码输入input $.each(serialize_array, function(index,obj){
$('#form').submit();//post提交 if(obj.name=='password'){
} obj.value=passwordEncrypted};
});
$.ajax({
type: 'POST',
url: '',
data: serialize_array,
success: function(data){
$('body').html(data);
},
error: function(data){
alert('服务器异常');
},
});
};
</script> </script>
{% endblock %} {% endblock %}

29
apps/authentication/templates/authentication/xpack_login.html
View File

@ -127,7 +127,7 @@
{{ form.captcha }} {{ form.captcha }}
</div> </div>
<div class="form-group" style="margin-top: 10px"> <div class="form-group" style="margin-top: 10px">
<button type="submit" class="btn btn-transparent" onclick="doLogin();return false;">{% trans 'Login' %}</button> <button id="submit-id" type="button" class="btn btn-transparent" onclick="doLogin()">{% trans 'Login' %}</button>
</div> </div>
<div style="text-align: center"> <div style="text-align: center">
<a href="{% url 'authentication:forgot-password' %}"> <a href="{% url 'authentication:forgot-password' %}">
@ -153,12 +153,27 @@
return jsencrypt.encrypt(password); //加密 return jsencrypt.encrypt(password); //加密
} }
function doLogin() { function doLogin() {
//公钥加密 var rsaPublicKey = "{{ rsa_public_key }}";
var rsaPublicKey = "{{ rsa_public_key }}" var password =$('#password').val();
var password =$('#password').val(); //明文密码 var passwordEncrypted = encryptLoginPassword(password, rsaPublicKey);
var passwordEncrypted = encryptLoginPassword(password, rsaPublicKey) var serialize_array = $('#form').serializeArray();
$('#password').val(passwordEncrypted); //返回给密码输入input $.each(serialize_array, function(index,obj){
$('#contact-form').submit();//post提交 if(obj.name=='password'){
obj.value=passwordEncrypted};
});
$.ajax({
type: 'POST',
url: '',
data: serialize_array,
success: function(data){
$('body').html(data);
},
error: function(data){
alert('服务器异常');
},
});
};
} }
</script> </script>
</html> </html>