@RequestMapping(method = RequestMethod.POST) public ModelAndView processForm(LoginForm loginForm, BindingResult result) { ModelAndView modelAndView = null; boolean isSuccess = false; validate(loginForm, result); if (!result.hasErrors()) { User user = loginService.login( loginForm.getUserName(), loginForm.getTenantId(), loginForm.getPassword()); if (user != null && user.getProfileId() != null) { if ("CUSTOMER".equals(user.getRole().getPrimary())) { modelAndView = accountController.getAccountOverview(user.getProfileId(), loginForm.getTenantId()); isSuccess = true; } else { log.debug("The user don't have a CUSTOMER ROLE"); result.addError(new ObjectError("role", "You are not authorized to login")); } } else { result.addError(new ObjectError("password", "Username or Password is wrong")); } } if (!isSuccess) { modelAndView = new ModelAndView("login"); // loginForm = new LoginForm(); loginForm.setPassword(null); loginForm.setUserName(null); modelAndView.addObject("form", loginForm); } return modelAndView; }
@RequestMapping(method = RequestMethod.GET) public String showForm( Map<String, LoginForm> model, @RequestParam(value = "tenantid") String tenantId) { LoginForm loginForm = new LoginForm(); loginForm.setTenantId(tenantId); model.put("loginForm", loginForm); return "login"; }