public JRadReturnMap innerAdminLogin(HttpServletRequest request) {

    JRadReturnMap returnMap = new JRadReturnMap();

    String username = request.getParameter("username");
    String password = request.getParameter("password");
    String ipAddress = request.getRemoteAddr();

    try {
      AuthResult authResult = authMgr.authUserByLogin(username, password);
      AuthResultType authResultType = authResult.getResultType();

      Errors errors = new Errors();
      String errorCode = null;
      if (AuthResultType.AUTH_ACCOUNT_NOT_EXIST.equals(authResultType)) {
        errorCode = "system.auth.accountNotExist";
      } else if (AuthResultType.AUTH_ACCOUNT_PASSWORD_ERROR.equals(authResultType)) {
        errorCode = "system.auth.passwordError";
      } else if (AuthResultType.AUTH_ACCOUNT_NOT_ACTIVE.equals(authResultType)) {
        errorCode = "system.auth.accountNotActive";
      } else if (AuthResultType.AUTH_ACCOUNT_NOT_LOCAL.equals(authResultType)) {
        //				errorCode = "system.auth.accountNotLocal";
      }

      String signInMsg = null;
      if (errorCode != null) {
        signInMsg = i18nHelper.getMessage(errorCode);
        errors.addGlobalError(errorCode);
        returnMap.setSuccess(false);
        returnMap.setErrors(errors);
      } else {
        IUser user = authResult.getUser();
        loginManager.login(user, request);
        request.getSession().setMaxInactiveInterval(300); // added by nihc 20150710 session超时
        signInMsg = i18nHelper.getMessage("system.auth.success");
      }

      loginLogManager.addSignInLog(username, LoginManager.LOCAL, ipAddress, signInMsg);
    } catch (Exception ex) {
      return WebRequestHelper.processException(ex);
    }

    return returnMap;
  }
  @RequestMapping(value = {"/logout.page"})
  public String logout(HttpServletRequest request) {

    IUser user = loginManager.getLoggedInUser(request);
    String login = user.getLogin();
    String type =
        user.getUserType() == IUser.USER_TYPE_LOCAL ? LoginManager.LOCAL : LoginManager.LDAP;
    String ipAddress = request.getRemoteAddr();
    String signOutMsg = i18nHelper.getMessage("system.auth.success");

    loginManager.logout(request);
    loginLogManager.addSignOutLog(login, type, ipAddress, signOutMsg);

    return "redirect:login.html";
  }