Index: ssts-web/build.gradle
===================================================================
diff -u -r27238 -r27735
--- ssts-web/build.gradle	(.../build.gradle)	(revision 27238)
+++ ssts-web/build.gradle	(.../build.gradle)	(revision 27735)
@@ -290,7 +290,7 @@
    println "运行任务2：准备spring security xml文件，使用标准的或者项目定制的xml文件"
    // spring security.xml文件名的后缀,applicationContext-acegi-security-standard.xml.back
    def suffix = 'standard'
-   if (projectName == 'zd5y' || projectName == 'hzszxrmyy' || projectName == 'dysyy' || projectName == 'gdsy' || projectName == 'gzzyyfy' || projectName == 'bjdxzlyy' || projectName == 'gdsrmyyzhyy'){
+   if (projectName == 'zd5y' || projectName == 'hzszxrmyy' || projectName == 'dysyy' || projectName == 'gdsy' || projectName == 'gzzyyfy' || projectName == 'bjdxzlyy' || projectName == 'gdsrmyyzhyy' || projectName == 'cszxyy'){
        suffix = projectName
    }
    
Index: ssts-web/src/main/webapp/WEB-INF/web-cszxyy.xml
===================================================================
diff -u -r26218 -r27735
--- ssts-web/src/main/webapp/WEB-INF/web-cszxyy.xml	(.../web-cszxyy.xml)	(revision 26218)
+++ ssts-web/src/main/webapp/WEB-INF/web-cszxyy.xml	(.../web-cszxyy.xml)	(revision 27735)
@@ -372,7 +372,7 @@
      </context-param>
     
     <welcome-file-list>
-        <welcome-file>logon.jsp</welcome-file>
+        <welcome-file>logonSSOForCszxyy.jsp</welcome-file>
     </welcome-file-list>
 
     <session-config>
Index: ssts-web/src/main/resources/spring/projects/cszxyy/applicationContext-disinfectsystem-project-specific.xml
===================================================================
diff -u -r12331 -r27735
--- ssts-web/src/main/resources/spring/projects/cszxyy/applicationContext-disinfectsystem-project-specific.xml	(.../applicationContext-disinfectsystem-project-specific.xml)	(revision 12331)
+++ ssts-web/src/main/resources/spring/projects/cszxyy/applicationContext-disinfectsystem-project-specific.xml	(.../applicationContext-disinfectsystem-project-specific.xml)	(revision 27735)
@@ -4,7 +4,7 @@
     xsi:schemaLocation="http://www.springframework.org/schema/beans 
     http://www.springframework.org/schema/beans/spring-beans.xsd" default-autowire="byName">
     
-    <bean id="ssoAuthenticationService"
+    <bean id="authenticationService"
         class="com.forgon.disinfectsystem.security.service.SSOAuthenticationServiceForChangshaZhongxingHospital">
     </bean>
     
Index: ssts-client-misc/src/main/java/com/forgon/disinfectsystem/security/handler/AuthenticationSuccessHandlerForCszxyy.java
===================================================================
diff -u
--- ssts-client-misc/src/main/java/com/forgon/disinfectsystem/security/handler/AuthenticationSuccessHandlerForCszxyy.java	(revision 0)
+++ ssts-client-misc/src/main/java/com/forgon/disinfectsystem/security/handler/AuthenticationSuccessHandlerForCszxyy.java	(revision 27735)
@@ -0,0 +1,41 @@
+package com.forgon.disinfectsystem.security.handler;
+
+import java.io.IOException;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler;
+import org.springframework.stereotype.Service;
+
+/**
+ * 长沙中心医院身份验证成功后的handler
+ * @author syf
+ * @since 2020-03-31
+ */
+@Service("authenticationSuccessHandlerForCszxyy")
+public class AuthenticationSuccessHandlerForCszxyy extends
+		SavedRequestAwareAuthenticationSuccessHandler {
+	
+    @Override
+    public void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response,
+            Authentication authentication) throws ServletException, IOException {
+
+        Authentication auth = SecurityContextHolder.getContext().getAuthentication();
+        if (auth != null && auth.isAuthenticated()) {
+
+            String username = auth.getPrincipal().toString();
+            String url = getDefaultTargetUrl();
+        	response.sendRedirect(url);
+
+//            UserData userData = userService.getUserData(username);
+            // And then here more checks, handlings etc.
+        }
+
+
+        super.onAuthenticationSuccess(request, response, authentication);
+    }
+}
Index: ssts-web/src/main/resources/spring/security/applicationContext-acegi-security-cszxyy.xml.back
===================================================================
diff -u
--- ssts-web/src/main/resources/spring/security/applicationContext-acegi-security-cszxyy.xml.back	(revision 0)
+++ ssts-web/src/main/resources/spring/security/applicationContext-acegi-security-cszxyy.xml.back	(revision 27735)
@@ -0,0 +1,128 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<beans:beans xmlns="http://www.springframework.org/schema/security"
+	xmlns:beans="http://www.springframework.org/schema/beans" 
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://www.springframework.org/schema/beans
+	http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
+	http://www.springframework.org/schema/security
+	http://www.springframework.org/schema/security/spring-security-3.2.xsd">
+	<!-- 长沙中心医院配置文件 -->
+	<debug />
+    
+    <!-- 具有2个authentication provider，第一个验证不通过则使用第二个进行验证 -->
+    <authentication-manager alias="authenticationManager" >
+        <authentication-provider user-service-ref="daoUserDetail">
+        	<password-encoder hash="md5" />
+    	</authentication-provider>
+    </authentication-manager>
+    
+    <authentication-manager id="a2" alias="authenticationManagerForCszxyy" >
+    	<authentication-provider ref="preAuthenticationProvider" />
+    </authentication-manager>
+    
+	<!-- enable use-expressions -->
+	<!--http auto-config="true" use-expressions="true">
+		<intercept-url pattern="/admin**" access="hasRole('ROLE_ADMIN')" /-->
+
+		<!-- access denied page -->
+		<!--access-denied-handler error-page="/403" /-->
+		<!-- form-login 
+		    login-page="/logon22.jsp" 
+		    default-target-url="/openSystemMainPage.jsp"
+			authentication-failure-url="/logon.jsp?login_error=1" 
+			username-parameter="username"
+			password-parameter="password" /-->
+		<!--logout logout-success-url="/login?logout" /-->
+		<!--csrf /-->
+	<!--/http-->    
+    
+    <http auto-config="false"  use-expressions="true">
+			<intercept-url pattern="/login" access="permitAll"></intercept-url>
+			<intercept-url pattern="/logout" access="permitAll"></intercept-url>
+			<intercept-url pattern="/accessdenied" access="permitAll"></intercept-url>
+			<intercept-url pattern="/logonSSOForCszxyy.jsp" access="permitAll"></intercept-url>
+			<intercept-url pattern="/debug/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/disinfectsystem/config/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/disinfectsystem/common/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/disinfectSystem/fileUploadServlet/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/CodeImageServlet/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/fckeditor/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/UserUpLoadFiles/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/openSystemMainPage.jsp" access="permitAll"></intercept-url>
+			<intercept-url pattern="/favicon.ico" access="permitAll"></intercept-url>
+			<intercept-url pattern="/common/taglibs.jsp" access="permitAll"></intercept-url>
+			<intercept-url pattern="/js/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/jquery/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/ext/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/dwr/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/images/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/styles/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/scripts/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/themes/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/services/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/mobileClient/**" access="permitAll"></intercept-url>
+			<intercept-url pattern="/disinfectSystem/sterilization/sterilizationRecordAction!uploadSterilizationRecordPic.do" access="permitAll"></intercept-url>
+
+			<!--  user is not an anonymous or a remember-me user -->
+			<intercept-url pattern="/**" access="isFullyAuthenticated()"></intercept-url>
+			<form-login login-page="/logonSSOForCszxyy.jsp"
+				always-use-default-target="true" 
+				default-target-url="/openSystemMainPage.jsp"
+				authentication-failure-url="/logonSSOForCszxyy.jsp?login_error=1"></form-login>
+			
+			<access-denied-handler error-page="/logonSSOForCszxyy.jsp"/>
+			<logout logout-success-url="/logonSSOForCszxyy.jsp"></logout>
+			<session-management invalid-session-url="/logonSSOForCszxyy.jsp">
+				<concurrency-control max-sessions="1000" error-if-maximum-exceeded="false"
+					session-registry-alias="sessionRegistry" />
+			</session-management>
+			<custom-filter position="PRE_AUTH_FILTER" ref="preAuthFilter" />
+	</http>
+
+	<beans:bean id="preAuthFilter"
+		class="com.forgon.disinfectsystem.security.filter.UrlParametersAuthenticationFilter">
+		<beans:property name="authenticationManager" ref="authenticationManagerForCszxyy" />
+	</beans:bean>
+
+	<beans:bean id="preAuthenticationProvider"
+		class="org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider">
+		<beans:property name="preAuthenticatedUserDetailsService"
+			ref="preAuthUserDetailsService" />
+	</beans:bean>
+
+    <beans:bean id="loggerListener"
+        class="org.springframework.security.access.event.LoggerListener" />
+    
+<!--     <beans:bean id="daoUserDetail" -->
+<!--         class="com.forgon.disinfectsystem.security.userdetails.DaoUserDetailSSTSImpl" > -->
+<!--         <beans:property name="userManager" ref="userManager" /> -->
+<!--         <beans:property name="sysUserManager" ref="sysUserManager" /> -->
+<!--         <beans:property name="directoryHelper" ref="directoryHelper" /> -->
+<!--         <beans:property name="roleManager" ref="roleManager" /> -->
+<!--         <beans:property name ="supplyRoomConfigManager" ref="supplyRoomConfigManager" /> -->
+<!--         <beans:property name ="orgUnitManager" ref="orgUnitManager" /> -->
+<!--     </beans:bean> -->
+
+    <beans:bean id="logoutFilter"
+    	class="org.springframework.security.web.authentication.logout.LogoutFilter">
+    	<!-- 退出后指向的 URL -->
+    	<beans:constructor-arg value="/" />
+    	<beans:constructor-arg>
+    		<beans:list>
+    			<beans:bean
+    				class="org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler" />
+    			<beans:ref bean="logoutHandler"/>
+    		</beans:list>
+    	</beans:constructor-arg>
+    </beans:bean>
+
+    <!-- 
+    <beans:bean id="jdbcUserDetailsManager"
+        class="org.springframework.security.userdetails.jdbc.JdbcUserDetailsManager">
+        <beans:property name="dataSource"
+            ref="dataSource" />
+    </beans:bean>
+     -->
+
+    <beans:bean id="sessionRegistry" class="org.springframework.security.core.session.SessionRegistryImpl"/>
+</beans:beans>
\ No newline at end of file
Index: ssts-web/src/main/webapp/logonSSOForCszxyy.jsp
===================================================================
diff -u -r20599 -r27735
--- ssts-web/src/main/webapp/logonSSOForCszxyy.jsp	(.../logonSSOForCszxyy.jsp)	(revision 20599)
+++ ssts-web/src/main/webapp/logonSSOForCszxyy.jsp	(.../logonSSOForCszxyy.jsp)	(revision 27735)
@@ -1,3 +1,6 @@
+<%@page import="com.forgon.security.service.SSOAuthenticationService"%>
+<%@page import="com.forgon.tools.SpringBeanManger"%>
+<%@page import="org.apache.commons.io.IOUtils"%>
 <%@page import="com.forgon.disinfectsystem.common.CssdUtils"%>
 <%@ page contentType="text/html; charset=UTF-8" %>
 <%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c" %>
@@ -6,28 +9,15 @@
 <%@page import="org.apache.commons.lang.StringUtils"%>
 <!DOCTYPE html>
 <%
-ArrayList message = new ArrayList();
-//用户名
-String un = request.getParameter("un");
-//密码
-String up = request.getParameter("up");
-if(StringUtils.isBlank(un)){
-	message.add("用户名不能为空");
-}else if(StringUtils.isBlank(up)){
-	message.add("密码不能为空");
-}
-pageContext.setAttribute("un", un);
-pageContext.setAttribute("up", up);
-pageContext.setAttribute("message", message);
-
 String companyName = CssdUtils.getSystemSetConfigByName("companyName");
 String companyNameStr = "";
 if(companyName == null || companyName.equals("forgon")){
-	companyNameStr = "©2016 广州孚峻信息技术有限公司 版权所有";
+	companyNameStr = "©2018 广州孚峻信息技术有限公司 版权所有";
 }else if(companyName.equals("dingxiang")){
-	companyNameStr = "©2016 广州丁香软件有限公司 版权所有";
+	companyNameStr = "©2018 广州丁香软件有限公司 版权所有";
 }
 session.setAttribute("companyName", companyNameStr);
+
 String project = CssdUtils.getConfigProperty("project");
 session.setAttribute("profile", project);
 
@@ -43,7 +33,35 @@
 		request.setAttribute("logoPath","themes/portalPage/img/logo_dingxiangsoft.png");
 	}
 }
- 
+
+//用户名
+String un = request.getParameter("j_username");
+//密码
+String up = request.getParameter("j_password");
+if(StringUtils.isNotBlank(un)){
+	if(StringUtils.isBlank(up)){
+		pageContext.setAttribute("message", "密码不能为空");
+	}else{
+		//否则提交接口认证
+		SSOAuthenticationService authenticationService = 
+				(SSOAuthenticationService)SpringBeanManger.getBean("authenticationService");
+		if(authenticationService == null){
+			pageContext.setAttribute("message", "未配置认证的bean,请检查!");
+		}else{
+			boolean validateSuccess = authenticationService.authentication(un,up,"");
+			if(validateSuccess){
+				//如果认证成功,转向至主页()
+				response.sendRedirect(request.getContextPath() + "/homepage/portalPage.jsp?un=" + un);
+			}else{
+				//否则如果认证不成功,提示认证失败
+				pageContext.setAttribute("message", "用户名"+ un +"认证失败,请检查用户名与密码是否正确");
+			}
+		}
+	}
+}else{
+	//pageContext.setAttribute("message", "用户名不能为空");
+}
+
 %>
 <html>
 <head>
@@ -54,31 +72,33 @@
 <meta http-equiv="X-UA-Compatible" content="IE=8" />
 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
 <title>消毒供应质量追溯管理系统</title>
-<%-- <link rel="stylesheet" type="text/css" href="${ctx}/themes/portalPage/css/login.css" /> --%>
+<link rel="stylesheet" type="text/css" href="${ctx}/themes/portalPage/css/login.css" />
 <script type="text/javascript" src="${ctx}/js/ui/common.js"></script>
 
 </head>
 
-<body onload=" setFieldFocus(document.getElementById('j_username_display'));autoMaxSize();autoLogin();">
+<body onload="MM_preloadImages('${ctx}/themes/portalPage/img/btn3.gif');setFieldFocus(document.getElementById('j_username_display'));autoMaxSize();">
 
-<form name="loginForm" action="j_spring_security_check" method="post" onsubmit="return checkSubmit();">
+<form name="loginForm" method="post" onsubmit="return checkSubmit();">
 <div style="height:118px;"></div>
-<div style="display:none;">
-    <c:if test="${(param.login_error == 1)}">账号或密码错误！请重新输入！</c:if>
-    <c:if test="${(param.login_error == 2)}">验证码错误，请重新输入！</c:if>
-    <c:if test="${(param.login_error == 3)}">该用户没有回收清点的权限，请重新输入！</c:if>
-    <c:if test="${(param.login_error == 4)}">注册码不正确或试用期已过！请与管理人员联系！</c:if>
-    <c:if test="${(param.login_error == 5)}">身份验证接口访问异常，请与系统管理员联系！</c:if>
+<div class="login_box">
+	<div class="login_logo" >
+			<img src="${ctx}/${logoPath}" width="215" height="55"/>
+	</div>
+    <div class="login_tag" id="tip">&nbsp;
+    <c:if test="${(message != null)}">${message }</c:if>
     </div>
-    <div class="login_n"  style="display:none;">
+    <div class="login_n">
       <input class="login_input" id="j_username_display" name="j_username_display" value="${un }" tabindex="1" type="text" maxlength="20" onfocus="this.select()" />
       <input id="j_username" name="j_username" type="hidden" value="${un }" maxlength="20"/>
       <span class="login_btn"><a href="#" onclick="checkSubmit();" tabindex="3"  onmouseout="MM_swapImgRestore()" onmouseover="MM_swapImage('btn1','','${ctx}/themes/portalPage/img/btn3.gif',1)"><img style="vertical-align:middle;" src="${ctx}/themes/portalPage/img/btn1.gif" name="btn1" width="83" height="38" border="0" id="btn1" /></a></span>
     </div>
-    <div class="login_p" style="display:none;">
+    <div class="login_p">
       <input class="login_input" id="j_password" name="j_password" tabindex="2" type="password" value="${up }" onfocus="this.select()" />
+      <span class="login_btn"><a href="#" onclick="resetForm();" tabindex="4" onmouseout="MM_swapImgRestore()" onmouseover="MM_swapImage('btn2','','${ctx}/themes/portalPage/img/btn4.gif',1)"><img style="vertical-align:middle;" src="${ctx}/themes/portalPage/img/btn2.gif" name="btn2" width="83" height="38" border="0" id="btn2" /></a></span>
     </div>
 </div>
+<div class="copyright">${companyName}</div>
 </form>
 </body>
 <script type="text/javascript" src="${ctx}/jquery/jquery-1.11.2.js"></script>
@@ -88,6 +108,7 @@
 <script type="text/javascript" src="${ctx}/disinfectsystem/common/cssdUtils.js"></script>
 <script type="text/javascript" src="${ctx}/js/configUtils.js"></script>
 <script type="text/javascript">
+var enalbeScanBarcodeLogin = true; //启用扫描条码登陆
 if (top != self) {
     top.location = self.location;
 }
@@ -118,55 +139,118 @@
    if ((x=MM_findObj(a[i]))!=null){document.MM_sr[j++]=x; if(!x.oSrc) x.oSrc=x.src; x.src=a[i+2];}
 }
 
-    function submitForm(){
-    	document.loginForm.submit();
-    }
-	function checkSubmit() {
-		if (isFieldBlank(document.loginForm.j_username_display) == true) {
-			alert('<fmt:message key="error.required.login.username"/>');
-			document.loginForm.j_username_display.focus();
-			return false;
-		}
-		if (isFieldBlank(document.loginForm.j_password) == true) {
-			if (document.activeElement.id != 'j_username_display') {
-				alert('<fmt:message key="error.required.login.password"/>');
-			}
-			document.loginForm.j_password.focus();
-			return false;
-		}
-		document.loginForm.j_username.value = document.loginForm.j_username_display.value;
-		document.loginForm.submit();
+/**
+ * 判断是否为有效的用户条码,01开头后面跟7-10位数字
+ * @param barcode 条码
+ * return 条码有效则返回true，否则返回false
+ */
+function isValidUserBarcode(barcode) {
+	var barcodeReg = /01(\d){7,10}/;
+	if (barcodeReg.test(barcode)) {
+		return true;
 	}
+	return false;
+}
 
-	function setFieldFocus(objField) {
-		try {
-			objField.focus();
-		} catch (e) {
+function submitForm(){
+	document.loginForm.submit();
+}
+function checkSubmit() {
+	if (isFieldBlank(document.loginForm.j_username_display) == true) {
+		alert('<fmt:message key="error.required.login.username"/>');
+		document.loginForm.j_username_display.focus();
+		return false;
+	}
+	if (isFieldBlank(document.loginForm.j_password) == true) {
+		if (document.activeElement.id != 'j_username_display') {
+			alert('<fmt:message key="error.required.login.password"/>');
 		}
+		document.loginForm.j_password.focus();
+		return false;
 	}
+	document.loginForm.j_username.value = document.loginForm.j_username_display.value;
+	if(isValidUserBarcode(document.loginForm.j_username.value)){
+		document.loginForm.action = 'j_spring_security_check';
+	}else{
+		document.loginForm.action = '';
+	}
+	document.loginForm.submit();
+}
 
-	function isFieldBlank(objField) {
-		if (typeof (objField[0]) == "object") {
-			objField = objField[0];
-		}
-		if (typeof (objField) == "object") {
-			if (objField.value == "") {
-				return true;
-			} else {
-				return false;
-			}
-		}
-		return true;
+function setFieldFocus(objField) {
+	try {
+		objField.focus();
+	} catch (e) {
 	}
-	function autoLogin(){
-		var a='${message}';
-		if(a.length>2){
-			alert(a);
-		}else{
-			document.loginForm.submit();
+}
+
+function isFieldBlank(objField) {
+	if (typeof (objField[0]) == "object") {
+		objField = objField[0];
+	}
+	if (typeof (objField) == "object") {
+		if (objField.value == "") {
+			return true;
+		} else {
+			return false;
 		}
-		
 	}
-</script>
+	return true;
+}
 
+//在页面无需将光标定位在输入框相应全局的扫描枪事件
+var barcodeTemp = '';
+var startTime = 0;
+function setStartTime(){
+	if(startTime == 0){
+		startTime = new Date().getTime();
+	}
+}
+function clearTempBarcodeInfo(){
+	startTime = 0;
+	barcodeTemp = '';
+}
+function showKeyDown(){
+    if(event.keyCode == 48 || event.keyCode == 96){
+        barcodeTemp += '0';
+        setStartTime();
+    }else if(event.keyCode == 49 || event.keyCode == 97){
+        barcodeTemp += '1';
+        setStartTime();
+    }else if(event.keyCode == 50 || event.keyCode == 98){
+        barcodeTemp += '2';
+        setStartTime();
+    }else if(event.keyCode == 51 || event.keyCode == 99){
+        barcodeTemp += '3';
+        setStartTime();
+    }else if(event.keyCode == 52 || event.keyCode == 100){
+        barcodeTemp += '4';
+        setStartTime();
+    }else if(event.keyCode == 53 || event.keyCode == 101){
+        barcodeTemp += '5';
+        setStartTime();
+    }else if(event.keyCode == 54 || event.keyCode == 102){
+        barcodeTemp += '6';
+        setStartTime();
+    }else if(event.keyCode == 55 || event.keyCode == 103){
+        barcodeTemp += '7';
+        setStartTime();
+    }else if(event.keyCode == 56 || event.keyCode == 104){
+        barcodeTemp += '8';
+        setStartTime();
+    }else if(event.keyCode == 57 || event.keyCode == 105){
+        barcodeTemp += '9';
+        setStartTime();
+    }else if(event.keyCode == 13){
+        if (enalbeScanBarcodeLogin){
+        	if(isValidUserBarcode($("#j_username_display").val())){
+                $("#j_password").attr("value" , "P@ssword");
+        	}
+        }
+        checkSubmit();
+        clearTempBarcodeInfo();
+    }
+}
+$(document).keypress(showKeyDown);
+</script>
 </html>
Index: ssts-web/src/main/java/com/forgon/disinfectsystem/security/userdetails/DaoUserDetailSSTSImpl.java
===================================================================
diff -u -r21397 -r27735
--- ssts-web/src/main/java/com/forgon/disinfectsystem/security/userdetails/DaoUserDetailSSTSImpl.java	(.../DaoUserDetailSSTSImpl.java)	(revision 21397)
+++ ssts-web/src/main/java/com/forgon/disinfectsystem/security/userdetails/DaoUserDetailSSTSImpl.java	(.../DaoUserDetailSSTSImpl.java)	(revision 27735)
@@ -154,36 +154,47 @@
 		}
 		
 		String password = currentLoginedUser.getPasswd();
-		//如果有配置sso单点登录的bean且所登录的帐号不为条码时,通过统一身份认证的方式认证
-		if(ssoAuthenticationService != null && !CssdUtils.usernameIsBarcode(username)){
-			boolean succ = false;
-			String message = "帐号" + username + "单点登录认证失败";
-			try {
-				//仅适合于获取登录页面提交的密码、pda与测试用例的登录提交的是无法通过request获取到的密码
-				password = request.getParameter("j_password");
-				if(StringUtils.isNotBlank(password)){
-					succ = ssoAuthenticationService.authentication(username, password, null);
-					byte[] bytes = password.getBytes(Charset.forName("UTF-8"));
-					try {
-						byte[] md5Bytes = CoderEncryption.encryptMD5(bytes);
-						password = ForgonStringUtils.encodeHexStr(md5Bytes, true);
-					} catch (Exception e) {
-						throw new RuntimeException("计算材料MD5出错!" + e.getMessage());
+		
+		/**
+		 * 通过扫描工作证条码登录时，在登录界面输入的用户名为条码值，密码固定输入为"P@ssword"，
+		 * 此处发现登录方式为扫描条码时，则将用户数据库的密码当做"P@ssword"，赋值为该密码的MD5加密值，
+		 * 这样能让用户通过身份验证，而不需要输入密码。
+		 */
+		if(CssdUtils.usernameIsBarcode(username)){
+			password = "382e0360e4eb7b70034fbaa69bec5786";
+		}else{
+			//如果有配置sso单点登录的bean且所登录的帐号不为条码时,通过统一身份认证的方式认证
+			if(ssoAuthenticationService != null){
+				boolean succ = false;
+				String message = "帐号" + username + "单点登录认证失败";
+				try {
+					//仅适合于获取登录页面提交的密码、pda与测试用例的登录提交的是无法通过request获取到的密码
+					password = request.getParameter("j_password");
+					if(StringUtils.isNotBlank(password)){
+						succ = ssoAuthenticationService.authentication(username, password, null);
+						byte[] bytes = password.getBytes(Charset.forName("UTF-8"));
+						try {
+							byte[] md5Bytes = CoderEncryption.encryptMD5(bytes);
+							password = ForgonStringUtils.encodeHexStr(md5Bytes, true);
+						} catch (Exception e) {
+							throw new RuntimeException("对密码进行MD5加密时出错!" + e.getMessage());
+						}
+					}else{
+						succ = true;
+						password = currentLoginedUser.getPasswd();
 					}
-				}else{
-					succ = true;
-					password = currentLoginedUser.getPasswd();
+					password = "c4ca4238a0b923820dcc509a6f75849b";
+				} catch (RuntimeException e) {
+					e.printStackTrace();
+					message += "," + e.getMessage();
+				} catch (Exception e) {
+					e.printStackTrace();
 				}
-			} catch (RuntimeException e) {
-				e.printStackTrace();
-				message += "," + e.getMessage();
-			} catch (Exception e) {
-				e.printStackTrace();
+				if(!succ && request != null){
+					request.getSession().setAttribute("message", message);
+					throw new DisabledException("user is disabled");
+				}
 			}
-			if(!succ && request != null){
-				request.getSession().setAttribute("message", message);
-				throw new DisabledException("user is disabled");
-			}
 		}
 		
 		Set<Role> allRoles = currentLoginedUser.getRoles();
@@ -203,16 +214,6 @@
 				+ loginUserVO.getUserFullName() + "，工号："
 				+ loginUserVO.getUserName());
 
-		/**
-		 * 通过扫描工作证条码登录时，在登录界面输入的用户名为条码值，密码固定输入为"P@ssword"，
-		 * 此处发现登录方式为扫描条码时，则将用户数据库的密码当做"P@ssword"，赋值为该密码的MD5加密值，
-		 * 这样能让用户通过身份验证，而不需要输入密码。
-		 */
-		if(CssdUtils.usernameIsBarcode(username)){
-			password = "382e0360e4eb7b70034fbaa69bec5786";
-		}
-		
-		
 		UserDetails acegiUser = new UserContainsSessionUser(
 				currentLoginedUser.getName(),password,
 				currentLoginedUser.isEnabled(), true, true, true,
Index: build.gradle
===================================================================
diff -u -r27704 -r27735
--- build.gradle	(.../build.gradle)	(revision 27704)
+++ build.gradle	(.../build.gradle)	(revision 27735)
@@ -314,8 +314,7 @@
 	    
 	    
 	    compile group: 'org.springframework', name: 'spring-ldap', version:'1.1.2'
-	    
-	    
+
         compile 'org.springframework.security:spring-security-web:' + springSecurityVersion
         compile 'org.springframework.security:spring-security-core:' + springSecurityVersion
         compile 'org.springframework.security:spring-security-config:' + springSecurityVersion
@@ -1083,6 +1082,7 @@
 		}
 		else if (projectName == 'cszxyy'){ // 长沙中心医院
 			compile (project(":ssts-cszxyy-misc"))
+			compile (project(":ssts-client-misc"))
 		}
 		else if (projectName == 'zd5y'){ // 中大五院
 			compile (project(":ssts-zd5y-misc"))