修改邮箱注册和登录流程。

src/main/java/com/ekexiu/portal/service/SysService.java

@@ -46,14 +46,14 @@ public class SysService {
	private String bindMailReplaceKey;
	private String bindMailReplaceContentTempalte;
	private long timeLimitWithBindMail = 10 * 60 * 1000;
	
	private String regMailReplaceKey;
	private String regMailReplaceContentTempalte;
	private long timeLimitWithRegMail = 10 * 60 * 1000;
	private String bindMobilePhoneReplaceKey;
	private String bindMobilePhoneContentTemplate;
	private long timeLimitWithBindMobilePhone =3 * 60 * 1000;
	private long timeLimitWithBindMobilePhone = 3 * 60 * 1000;
	private String phoneRetrievePasswordReplaceKey;
	private String phoneRetrievePasswordContentTemplate;
@@ -63,11 +63,11 @@ public class SysService {
	private String mailRetrievePasswordReplaceKey;
	private String mailRetrievePasswordSubject;
	private long timeLimitWithMailRetrivePassword = 10 * 60 * 1000;
	
	private String regMobilePhoneReplaceKey;
	private String regMobilePhoneContentTemplate;
	private long timeLimitWithRegMobilePhone = 3 * 60 * 1000;
	
	public String getRegMailReplaceKey() {
		return regMailReplaceKey;
	}
@@ -122,7 +122,8 @@ public class SysService {
		return mailRetrievePasswordSubject;
	}
	public void setMailRetrievePasswordSubject(String mailRetrievePasswordSubject) {
	public void setMailRetrievePasswordSubject(
			String mailRetrievePasswordSubject) {
		this.mailRetrievePasswordSubject = mailRetrievePasswordSubject;
	}
@@ -138,7 +139,8 @@ public class SysService {
		return phoneRetrievePasswordReplaceKey;
	}
	public void setPhoneRetrievePasswordReplaceKey(String phoneRetrievePasswordReplaceKey) {
	public void setPhoneRetrievePasswordReplaceKey(
			String phoneRetrievePasswordReplaceKey) {
		this.phoneRetrievePasswordReplaceKey = phoneRetrievePasswordReplaceKey;
	}
@@ -146,7 +148,8 @@ public class SysService {
		return phoneRetrievePasswordContentTemplate;
	}
	public void setPhoneRetrievePasswordContentTemplate(String phoneRetrievePasswordContentTemplate) {
	public void setPhoneRetrievePasswordContentTemplate(
			String phoneRetrievePasswordContentTemplate) {
		this.phoneRetrievePasswordContentTemplate = phoneRetrievePasswordContentTemplate;
	}
@@ -154,7 +157,8 @@ public class SysService {
		return timeLimitWithPhoneRetrievePassword;
	}
	public void setTimeLimitWithPhoneRetrievePassword(long timeLimitWithPhoneRetrievePassword) {
	public void setTimeLimitWithPhoneRetrievePassword(
			long timeLimitWithPhoneRetrievePassword) {
		this.timeLimitWithPhoneRetrievePassword = timeLimitWithPhoneRetrievePassword;
	}
@@ -162,7 +166,8 @@ public class SysService {
		return timeLimitWithMailRetrivePassword;
	}
	public void setTimeLimitWithMailRetrivePassword(long timeLimitWithMailRetrivePassword) {
	public void setTimeLimitWithMailRetrivePassword(
			long timeLimitWithMailRetrivePassword) {
		this.timeLimitWithMailRetrivePassword = timeLimitWithMailRetrivePassword;
	}
@@ -178,7 +183,8 @@ public class SysService {
		return bindMobilePhoneContentTemplate;
	}
	public void setBindMobilePhoneContentTemplate(String bindMobilePhoneContentTemplate) {
	public void setBindMobilePhoneContentTemplate(
			String bindMobilePhoneContentTemplate) {
		this.bindMobilePhoneContentTemplate = bindMobilePhoneContentTemplate;
	}
@@ -186,11 +192,13 @@ public class SysService {
		return timeLimitWithBindMobilePhone;
	}
	public void setTimeLimitWithBindMobilePhone(long timeLimitWithBindMobilePhone) {
	public void setTimeLimitWithBindMobilePhone(
			long timeLimitWithBindMobilePhone) {
		this.timeLimitWithBindMobilePhone = timeLimitWithBindMobilePhone;
	}
	public void setMailRetrievePasswordContentTemplate(String retrievePasswordContentTemplate) {
	public void setMailRetrievePasswordContentTemplate(
			String retrievePasswordContentTemplate) {
		this.mailRetrievePasswordContentTemplate = retrievePasswordContentTemplate;
	}
@@ -214,7 +222,8 @@ public class SysService {
		return mailRetrievePasswordReplaceKey;
	}
	public void setMailRetrievePasswordReplaceKey(String retrievePasswordReplaceKey) {
	public void setMailRetrievePasswordReplaceKey(
			String retrievePasswordReplaceKey) {
		this.mailRetrievePasswordReplaceKey = retrievePasswordReplaceKey;
	}
@@ -234,7 +243,8 @@ public class SysService {
		return bindMailReplaceContentTempalte;
	}
	public void setBindMailReplaceContentTempalte(String bindMailReplaceContentTempalte) {
	public void setBindMailReplaceContentTempalte(
			String bindMailReplaceContentTempalte) {
		this.bindMailReplaceContentTempalte = bindMailReplaceContentTempalte;
	}
@@ -264,42 +274,53 @@ public class SysService {
	@Get
	@Path("/getUUID")
	public String getUUID(@JdbcConn Connection con, String pass) throws SQLException {
	public String getUUID(@JdbcConn Connection con, String pass)
			throws SQLException {
		return StringUtil.md5(pass);
	}
	
	@Get
	@Path("/isReg")
	public boolean isReg(@JdbcConn Connection con, String key) throws SQLException {
	public boolean isReg(@JdbcConn Connection con, String key)
			throws SQLException {
		User user = this.userDao.queryByEmailOrMobilePhone(con, key);
		if(null != user) {
		if (null != user) {
			return false;
		}else{
		} else {
			return true;
		}
	}
	/**
	 * 手机验证注册
	 * 
	 * @param con
	 * @param state 发送手机验证码的返回值
	 * @param mobilePhone 验证的手机号
	 * @param validateCode 手机验证码
	 * @param password 注册密码
	 * @param state
	 *            发送手机验证码的返回值
	 * @param mobilePhone
	 *            验证的手机号
	 * @param validateCode
	 *            手机验证码
	 * @param password
	 *            注册密码
	 * @return
	 * @throws SQLException
	 */
	@Post
	@Path("/regmobile")
	public String regMobile(@JdbcConn(true) Connection con, String state, String mobilePhone, String validateCode, String password) throws SQLException {
	public String regMobile(@JdbcConn(true) Connection con, String state,
			String mobilePhone, String validateCode, String password)
			throws SQLException {
		@SuppressWarnings("unchecked")
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext.getCachedObject(state);
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext
				.getCachedObject(state);
		if (sc == null)
			return null;
		if (sc.getExpiredTime() < System.currentTimeMillis())
			return null;
		try {
			if (!sc.getKey().equals(mobilePhone) || !sc.getValue().equals(validateCode)){
			if (!sc.getKey().equals(mobilePhone)
					|| !sc.getValue().equals(validateCode)) {
				return null;
			}
			User user = new User();
@@ -307,91 +328,124 @@ public class SysService {
			String passwd = StringUtil.md5(password);
			user.setMobilePhone(mobilePhone);
			user.setPasswd(passwd);
			user.setUserType(0+"");
			user.setUserType(0 + "");
			this.userDao.insert(con, user);
			return user.getId();
		} finally {
			JfwAppContext.removeCachedObject(state);
		}
	}
	
	/**
	 * 邮箱验证注册
	 * 邮箱验证
	 * 
	 * @param con
	 * @param key 发送邮箱验证的返回值
	 * @param mail 验证的邮箱地址
	 * @param password 注册密码
	 * @return
	 * @param key
	 *            发送邮箱验证的返回值
	 * @param mail
	 *            验证的邮箱地址
	 * @return 验证成功 用户登录并返回用户信息 验证失败返回null
	 * @throws SQLException
	 */
	@SetCookie(checkResultNull = true, path = "/", value = {
			"userid=result.getId()", "userMobilePhone=result.getMobilePhone()",
			"userType=result.getType()",
			"userAuth=String.valueOf(result.isAuth())",
			"userEmail=result.getEmail()==null?\"\":result.getEmail()",
			"userName=result.getName()" })
	@Post
	@Path("/regmail/{key}")
	public String regeMail(@JdbcConn(true) Connection con, @PathVar String key, String mail, String password) throws SQLException {
	public SessionUser regeMail(@JdbcConn(true) Connection con, @PathVar String key, String mail) throws SQLException {
		@SuppressWarnings("unchecked")
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext.getCachedObject(key);
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext
				.getCachedObject(key);
		if (sc == null)
			return null;
		if (sc.getExpiredTime() < System.currentTimeMillis())
			return null;
		try {
			User user = new User();
			user.setId(StringUtil.buildUUID());
			String passwd = StringUtil.md5(password);
			user.setEmail(mail);
			user.setPasswd(passwd);
			user.setUserType(0+"");
			this.userDao.insert(con, user);
			return user.getId();
			User user = userDao.queryByEmailOrMobilePhone(con, mail);
			if (null == user)
				return null;
			SessionUser ret = new SessionUser();
			ret.setId(user.getId());
			if (null != this.professorDao.query(con, user.getId())) {
				ret.setName(this.professorDao.query(con, user.getId()).getName());
			}
			ret.setMobilePhone(user.getMobilePhone());
			ret.setType(user.getUserType());
			ret.setEmail(user.getEmail());
			ret.setAuth(true);
			return ret;
		} finally {
			JfwAppContext.removeCachedObject(key);
		}
	}
	
	/**
	 * 发送邮箱验证
	 * 邮箱注册并发送邮箱验证
	 * @param con
	 * @param mail 验证的邮箱地址
	 * @return
	 * @param mail 待验证的邮箱地址
	 * @param password 密码
	 * @return 注册成功并发动验证返回用户ID  用户已注册返回null  邮件发送失败抛出异常
	 * @throws JfwBaseException
	 * @throws SQLException
	 */
	@SuppressWarnings("null")
	@Get
	@Path("/regmail")
	public boolean regMail(@JdbcConn(false) Connection con, String mail) throws JfwBaseException, SQLException {
	public String regMail(@JdbcConn(true) Connection con, String mail,
			String password) throws JfwBaseException, SQLException {
		User user = this.userDao.queryByEmailOrMobilePhone(con, mail);
		if(null != user){
			return false;
		}
		
		StateCode<String, String> sc = new StateCode<String, String>();
		final String key = JfwAppContext.cacheObjectAndGenKey(sc);
		Map<String, String> map = new HashMap<String, String>();
		map.put(this.regMailReplaceKey, key);
		try {
			mailservice.sendSimpleMail(mail, this.regMailReplaceContentTempalte, map, this.bindMailSubject);
			long ct = System.currentTimeMillis();
			long et = ct + this.timeLimitWithRegMail + 10000;
			sc.setBuildTime(ct);
			sc.setExpiredTime(et);
			JfwAppContext.getScheduledExecutorService().schedule(new Runnable() {
				@Override
				public void run() {
					JfwAppContext.removeCachedObject(key);
				}
			}, this.timeLimitWithRegMail + 20000, TimeUnit.MILLISECONDS);
		} catch (Exception e) {
			JfwAppContext.removeCachedObject(key);
			throw new JfwBaseException(10011, "send mail to " + mail + " error", e);
		if (null != user) {
			return null;
		} else {
			user.setId(StringUtil.buildUUID());
			String passwd = StringUtil.md5(password);
			user.setEmail(mail);
			user.setPasswd(passwd);
			user.setUserType(0 + "");
			this.userDao.insert(con, user);
			StateCode<String, String> sc = new StateCode<String, String>();
			final String key = JfwAppContext.cacheObjectAndGenKey(sc);
			Map<String, String> map = new HashMap<String, String>();
			map.put(this.regMailReplaceKey, key);
			try {
				mailservice.sendSimpleMail(mail,
						this.regMailReplaceContentTempalte, map,
						this.bindMailSubject);
				long ct = System.currentTimeMillis();
				long et = ct + this.timeLimitWithRegMail + 10000;
				sc.setBuildTime(ct);
				sc.setExpiredTime(et);
				JfwAppContext.getScheduledExecutorService().schedule(
						new Runnable() {
							@Override
							public void run() {
								JfwAppContext.removeCachedObject(key);
							}
						}, this.timeLimitWithRegMail + 20000,
						TimeUnit.MILLISECONDS);
			} catch (Exception e) {
				JfwAppContext.removeCachedObject(key);
				throw new JfwBaseException(10011, "send mail to " + mail
						+ " error", e);
			}
		}
		return true;
		return user.getId();
	}
	
	@SetCookie(checkResultNull = true, path = "/", value = { "userid=result.getId()", "userMobilePhone=result.getMobilePhone()", "userType=result.getType()",
			"userAuth=String.valueOf(result.isAuth())", "userEmail=result.getEmail()==null?\"\":result.getEmail()","userName=result.getName()" })
	@SetCookie(checkResultNull = true, path = "/", value = {
			"userid=result.getId()", "userMobilePhone=result.getMobilePhone()",
			"userType=result.getType()",
			"userAuth=String.valueOf(result.isAuth())",
			"userEmail=result.getEmail()==null?\"\":result.getEmail()",
			"userName=result.getName()" })
	@Post
	@Path("/slogin")
	public SessionUser sLogin(@JdbcConn Connection con, String code, String mobile) throws SQLException {
	public SessionUser sLogin(@JdbcConn Connection con, String code,
			String mobile) throws SQLException {
		User user = userDao.query(con, code);
		if (null == user)
			return null;
@@ -408,11 +462,16 @@ public class SysService {
		return ret;
	}
	@SetCookie(checkResultNull = true, path = "/", value = { "userid=result.getId()", "userMobilePhone=result.getMobilePhone()", "userType=result.getType()",
			"userAuth=String.valueOf(result.isAuth())", "userEmail=result.getEmail()==null?\"\":result.getEmail()" ,"userName=result.getName()"})
	@SetCookie(checkResultNull = true, path = "/", value = {
			"userid=result.getId()", "userMobilePhone=result.getMobilePhone()",
			"userType=result.getType()",
			"userAuth=String.valueOf(result.isAuth())",
			"userEmail=result.getEmail()==null?\"\":result.getEmail()",
			"userName=result.getName()" })
	@Post
	@Path("/login")
	public SessionUser login(@JdbcConn Connection con, String lk, String pw) throws SQLException {
	public SessionUser login(@JdbcConn Connection con, String lk, String pw)
			throws SQLException {
		User user = userDao.queryByEmailOrMobilePhone(con, lk);
		if (null == user)
			return null;
@@ -421,11 +480,10 @@ public class SysService {
		if (!StringUtil.md5(pw).equals(user.getPasswd()))
			return null;
		
		SessionUser ret = new SessionUser();
		ret.setId(user.getId());
		if(null!=this.professorDao.query(con,user.getId())) {
			ret.setName(this.professorDao.query(con,user.getId()).getName());
		if (null != this.professorDao.query(con, user.getId())) {
			ret.setName(this.professorDao.query(con, user.getId()).getName());
		}
		ret.setMobilePhone(user.getMobilePhone());
		ret.setType(user.getUserType());
@@ -436,7 +494,8 @@ public class SysService {
	@Post
	@Path("/cp")
	public boolean changePw(@JdbcConn(true) Connection con, String id, String npw, @Nullable String onw) throws SQLException {
	public boolean changePw(@JdbcConn(true) Connection con, String id,
			String npw, @Nullable String onw) throws SQLException {
		User user = this.userDao.query(con, id);
		if (user == null)
			return false;
@@ -453,7 +512,8 @@ public class SysService {
	@Get
	@Path("/reqBindMail")
	public boolean reqBindMail(@JdbcConn(false) Connection con, String userid, String mail) throws JfwBaseException, SQLException {
	public boolean reqBindMail(@JdbcConn(false) Connection con, String userid,
			String mail) throws JfwBaseException, SQLException {
		User user = this.userDao.query(con, userid);
		if (null == user)
			return false;
@@ -469,29 +529,36 @@ public class SysService {
		Map<String, String> map = new HashMap<String, String>();
		map.put(this.bindMailReplaceKey, key);
		try {
			mailservice.sendSimpleMail(mail, this.bindMailReplaceContentTempalte, map, this.bindMailSubject);
			mailservice.sendSimpleMail(mail,
					this.bindMailReplaceContentTempalte, map,
					this.bindMailSubject);
			long ct = System.currentTimeMillis();
			long et = ct + this.timeLimitWithBindMail + 10000;
			sc.setBuildTime(ct);
			sc.setExpiredTime(et);
			JfwAppContext.getScheduledExecutorService().schedule(new Runnable() {
				@Override
				public void run() {
					JfwAppContext.removeCachedObject(key);
				}
			}, this.timeLimitWithBindMail + 20000, TimeUnit.MILLISECONDS);
			JfwAppContext.getScheduledExecutorService().schedule(
					new Runnable() {
						@Override
						public void run() {
							JfwAppContext.removeCachedObject(key);
						}
					}, this.timeLimitWithBindMail + 20000,
					TimeUnit.MILLISECONDS);
		} catch (Exception e) {
			JfwAppContext.removeCachedObject(key);
			throw new JfwBaseException(10011, "send mail to " + mail + " error", e);
			throw new JfwBaseException(10011,
					"send mail to " + mail + " error", e);
		}
		return true;
	}
	@Get
	@Path("/bindMail/{key}")
	public boolean bindMail(@JdbcConn(true) Connection con, @PathVar String key) throws SQLException {
	public boolean bindMail(@JdbcConn(true) Connection con, @PathVar String key)
			throws SQLException {
		@SuppressWarnings("unchecked")
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext.getCachedObject(key);
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext
				.getCachedObject(key);
		if (sc == null)
			return false;
		if (sc.getExpiredTime() < System.currentTimeMillis())
@@ -505,7 +572,9 @@ public class SysService {
	@Get
	@Path("/vcWithBind")
	public String reqBindBindMobilePhone(@JdbcConn(false) Connection con, String userid, String mobilePhone) throws JfwBaseException, SQLException {
	public String reqBindBindMobilePhone(@JdbcConn(false) Connection con,
			String userid, String mobilePhone) throws JfwBaseException,
			SQLException {
		User user = this.userDao.query(con, userid);
		if (null == user)
			return null;
@@ -524,40 +593,48 @@ public class SysService {
			String vc = String.format("%04d", vi);
			sc.setKey(mobilePhone);
			sc.setValue(vc);
			this.mobilePhoneServcie.sendMessage(mobilePhone, this.bindMobilePhoneContentTemplate, this.bindMobilePhoneReplaceKey, vc);
			this.mobilePhoneServcie.sendMessage(mobilePhone,
					this.bindMobilePhoneContentTemplate,
					this.bindMobilePhoneReplaceKey, vc);
			long ct = System.currentTimeMillis();
			long et = ct + this.timeLimitWithBindMobilePhone + 5000;
			sc.setBuildTime(ct);
			sc.setExpiredTime(et);
			JfwAppContext.getScheduledExecutorService().schedule(new Runnable() {
				@Override
				public void run() {
					JfwAppContext.removeCachedObject(key);
				}
			}, this.timeLimitWithBindMobilePhone + 10000, TimeUnit.MILLISECONDS);
			JfwAppContext.getScheduledExecutorService().schedule(
					new Runnable() {
						@Override
						public void run() {
							JfwAppContext.removeCachedObject(key);
						}
					}, this.timeLimitWithBindMobilePhone + 10000,
					TimeUnit.MILLISECONDS);
		} catch (Exception e) {
			JfwAppContext.removeCachedObject(key);
			throw new JfwBaseException(10012, "send mobile phone message to " + mobilePhone + " error", e);
			throw new JfwBaseException(10012, "send mobile phone message to "
					+ mobilePhone + " error", e);
		}
		return key;
	}
	/**
	 * 发送手机验证码
	 * 
	 * @param con
	 * @param mobilePhone 验证的手机号
	 * @param mobilePhone
	 *            验证的手机号
	 * @return
	 * @throws JfwBaseException
	 * @throws SQLException
	 */
	@Get
	@Path("/regmobilephone")
	public String regMobilePhone(@JdbcConn(false) Connection con, String mobilePhone) throws JfwBaseException, SQLException {
	public String regMobilePhone(@JdbcConn(false) Connection con,
			String mobilePhone) throws JfwBaseException, SQLException {
		User user = this.userDao.queryByEmailOrMobilePhone(con, mobilePhone);
		if(null != user){
		if (null != user) {
			return null;
		}
		
		StateCode<String, String> sc = new StateCode<String, String>();
		final String key = JfwAppContext.cacheObjectAndGenKey(sc);
@@ -569,35 +646,44 @@ public class SysService {
			String vc = String.format("%04d", vi);
			sc.setKey(mobilePhone);
			sc.setValue(vc);
			this.mobilePhoneServcie.sendMessage(mobilePhone, this.regMobilePhoneContentTemplate, this.regMobilePhoneReplaceKey, vc);
			this.mobilePhoneServcie.sendMessage(mobilePhone,
					this.regMobilePhoneContentTemplate,
					this.regMobilePhoneReplaceKey, vc);
			long ct = System.currentTimeMillis();
			long et = ct + this.timeLimitWithRegMobilePhone + 5000;
			sc.setBuildTime(ct);
			sc.setExpiredTime(et);
			JfwAppContext.getScheduledExecutorService().schedule(new Runnable() {
				@Override
				public void run() {
					JfwAppContext.removeCachedObject(key);
				}
			}, this.timeLimitWithRegMobilePhone + 10000, TimeUnit.MILLISECONDS);
			JfwAppContext.getScheduledExecutorService().schedule(
					new Runnable() {
						@Override
						public void run() {
							JfwAppContext.removeCachedObject(key);
						}
					}, this.timeLimitWithRegMobilePhone + 10000,
					TimeUnit.MILLISECONDS);
		} catch (Exception e) {
			JfwAppContext.removeCachedObject(key);
			throw new JfwBaseException(10012, "send mobile phone message to " + mobilePhone + " error", e);
			throw new JfwBaseException(10012, "send mobile phone message to "
					+ mobilePhone + " error", e);
		}
		return key;
	}
	
	@Post
	@Path("/bindMobilePhone")
	public boolean bindMobilePhone(@JdbcConn(true) Connection con, String state, String userid, String mobilePhone, String validateCode) throws SQLException {
	public boolean bindMobilePhone(@JdbcConn(true) Connection con,
			String state, String userid, String mobilePhone, String validateCode)
			throws SQLException {
		@SuppressWarnings("unchecked")
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext.getCachedObject(state);
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext
				.getCachedObject(state);
		if (sc == null)
			return false;
		if (sc.getExpiredTime() < System.currentTimeMillis())
			return false;
		try {
			if (!sc.getKey().equals(mobilePhone) || !sc.getValue().equals(validateCode))
			if (!sc.getKey().equals(mobilePhone)
					|| !sc.getValue().equals(validateCode))
				return false;
			return this.userDao.updateMobilePhone(con, mobilePhone, userid) > 0;
		} finally {
@@ -607,12 +693,13 @@ public class SysService {
	@Get
	@Path("/vcWithRP")
	public String rePassWordWithPhone(@JdbcConn(false) Connection con, String mobilePhone) throws JfwBaseException, SQLException {
	public String rePassWordWithPhone(@JdbcConn(false) Connection con,
			String mobilePhone) throws JfwBaseException, SQLException {
		User user = this.userDao.queryByEmailOrMobilePhone(con, mobilePhone);
		if (null == user)
			return null;
       
		StateCode<String, String> sc = new StateCode<String, String>();
		final String key = JfwAppContext.cacheObjectAndGenKey(sc);
		try {
@@ -622,20 +709,25 @@ public class SysService {
			String vc = String.format("%04d", vi);
			sc.setKey(mobilePhone);
			sc.setValue(vc);
			this.mobilePhoneServcie.sendMessage(mobilePhone, this.phoneRetrievePasswordContentTemplate, this.phoneRetrievePasswordReplaceKey, vc);
			this.mobilePhoneServcie.sendMessage(mobilePhone,
					this.phoneRetrievePasswordContentTemplate,
					this.phoneRetrievePasswordReplaceKey, vc);
			long ct = System.currentTimeMillis();
			long et = ct + this.timeLimitWithPhoneRetrievePassword + 5000;
			sc.setBuildTime(ct);
			sc.setExpiredTime(et);
			JfwAppContext.getScheduledExecutorService().schedule(new Runnable() {
				@Override
				public void run() {
					JfwAppContext.removeCachedObject(key);
				}
			}, this.timeLimitWithPhoneRetrievePassword + 10000, TimeUnit.MILLISECONDS);
			JfwAppContext.getScheduledExecutorService().schedule(
					new Runnable() {
						@Override
						public void run() {
							JfwAppContext.removeCachedObject(key);
						}
					}, this.timeLimitWithPhoneRetrievePassword + 10000,
					TimeUnit.MILLISECONDS);
		} catch (Exception e) {
			JfwAppContext.removeCachedObject(key);
			throw new JfwBaseException(10012, "send mobile phone message to " + mobilePhone + " error", e);
			throw new JfwBaseException(10012, "send mobile phone message to "
					+ mobilePhone + " error", e);
		}
		return key;
	}
@@ -644,11 +736,12 @@ public class SysService {
	@Path("/validCode")
	public boolean validCode(String state, String vc) {
		@SuppressWarnings("unchecked")
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext.getCachedObject(state);
		if (sc == null){
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext
				.getCachedObject(state);
		if (sc == null) {
			return false;
		}
		if (sc.getExpiredTime() < System.currentTimeMillis()){
		if (sc.getExpiredTime() < System.currentTimeMillis()) {
			return false;
		}
		return sc.getValue().equals(vc);
@@ -656,19 +749,22 @@ public class SysService {
	@Post
	@Path("/resetPasswordWithMobilePhone")
	public boolean resetPassword(@JdbcConn(true) Connection con, String state, String mobilePhone, String pw, String vc) throws SQLException {
	public boolean resetPassword(@JdbcConn(true) Connection con, String state,
			String mobilePhone, String pw, String vc) throws SQLException {
		@SuppressWarnings("unchecked")
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext.getCachedObject(state);
		if (sc == null){
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext
				.getCachedObject(state);
		if (sc == null) {
			return false;
		}
		if (sc.getExpiredTime() < System.currentTimeMillis()){
		if (sc.getExpiredTime() < System.currentTimeMillis()) {
			return false;
		}
		try {
			if (!sc.getKey().equals(mobilePhone) || !sc.getValue().equals(vc))
				return false;
			return this.userDao.updatePasswordWithMobileOrEmail(con, StringUtil.md5(pw), mobilePhone) > 0;
			return this.userDao.updatePasswordWithMobileOrEmail(con,
					StringUtil.md5(pw), mobilePhone) > 0;
		} finally {
			JfwAppContext.removeCachedObject(state);
		}
@@ -676,7 +772,8 @@ public class SysService {
	@Get
	@Path("/reqRpWithEmail")
	public boolean reqRpWithEmail(@JdbcConn(false) Connection con, String mail) throws JfwBaseException, SQLException {
	public boolean reqRpWithEmail(@JdbcConn(false) Connection con, String mail)
			throws JfwBaseException, SQLException {
		User user = this.userDao.queryByEmailOrMobilePhone(con, mail);
		if (user == null)
			return false;
@@ -687,20 +784,25 @@ public class SysService {
		Map<String, String> map = new HashMap<String, String>();
		map.put(this.mailRetrievePasswordReplaceKey, key);
		try {
			mailservice.sendSimpleMail(mail, this.mailRetrievePasswordContentTemplate, map, this.mailRetrievePasswordSubject);
			mailservice.sendSimpleMail(mail,
					this.mailRetrievePasswordContentTemplate, map,
					this.mailRetrievePasswordSubject);
			long ct = System.currentTimeMillis();
			long et = ct + this.timeLimitWithMailRetrivePassword + 10000;
			sc.setBuildTime(ct);
			sc.setExpiredTime(et);
			JfwAppContext.getScheduledExecutorService().schedule(new Runnable() {
				@Override
				public void run() {
					JfwAppContext.removeCachedObject(key);
				}
			}, this.timeLimitWithMailRetrivePassword + 20000, TimeUnit.MILLISECONDS);
			JfwAppContext.getScheduledExecutorService().schedule(
					new Runnable() {
						@Override
						public void run() {
							JfwAppContext.removeCachedObject(key);
						}
					}, this.timeLimitWithMailRetrivePassword + 20000,
					TimeUnit.MILLISECONDS);
		} catch (Exception e) {
			JfwAppContext.removeCachedObject(key);
			throw new JfwBaseException(10011, "send mail to " + mail + " error", e);
			throw new JfwBaseException(10011,
					"send mail to " + mail + " error", e);
		}
		return true;
	}
@@ -709,7 +811,8 @@ public class SysService {
	@Path("/validMailState")
	public boolean validMailState(String state) {
		@SuppressWarnings("unchecked")
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext.getCachedObject(state);
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext
				.getCachedObject(state);
		if (sc == null)
			return false;
		if (sc.getExpiredTime() < System.currentTimeMillis())
@@ -719,9 +822,11 @@ public class SysService {
	@Post
	@Path("/resetPasswordWith")
	public boolean resetPassword(@JdbcConn(true) Connection con, String state, String pw) throws SQLException {
	public boolean resetPassword(@JdbcConn(true) Connection con, String state,
			String pw) throws SQLException {
		@SuppressWarnings("unchecked")
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext.getCachedObject(state);
		StateCode<String, String> sc = (StateCode<String, String>) JfwAppContext
				.getCachedObject(state);
		if (sc == null)
			return false;
		if (sc.getExpiredTime() < System.currentTimeMillis())
@@ -733,6 +838,7 @@ public class SysService {
			JfwAppContext.removeCachedObject(state);
		}
	}
	public static void main(String[] args) {
		System.out.println(String.format("%04d", new Random().nextInt(10000)));
	}