@RequestMapping(method = RequestMethod.POST)
public ModelAndView processForm(LoginForm loginForm, BindingResult result) {
ModelAndView modelAndView = null;
boolean isSuccess = false;
validate(loginForm, result);
if (!result.hasErrors()) {
User user =
loginService.login(
loginForm.getUserName(), loginForm.getTenantId(), loginForm.getPassword());
if (user != null && user.getProfileId() != null) {
if ("CUSTOMER".equals(user.getRole().getPrimary())) {
modelAndView =
accountController.getAccountOverview(user.getProfileId(), loginForm.getTenantId());
isSuccess = true;
} else {
log.debug("The user don't have a CUSTOMER ROLE");
result.addError(new ObjectError("role", "You are not authorized to login"));
}
} else {
result.addError(new ObjectError("password", "Username or Password is wrong"));
}
}
if (!isSuccess) {
modelAndView = new ModelAndView("login");
// loginForm = new LoginForm();
loginForm.setPassword(null);
loginForm.setUserName(null);
modelAndView.addObject("form", loginForm);
}
return modelAndView;
}
@RequestMapping(method = RequestMethod.GET)
public String showForm(
Map<String, LoginForm> model, @RequestParam(value = "tenantid") String tenantId) {
LoginForm loginForm = new LoginForm();
loginForm.setTenantId(tenantId);
model.put("loginForm", loginForm);
return "login";
}
