MVC - Membership

如果不是Web App也能通过app.config来进行配置 

用后端方法进行登录

    public interface IFormsAuthenticationService

    {

        void SignIn(string userName, bool createPersistentCookie);

        void SignOut();

    }

    public class FormsAuthenticationService : IFormsAuthenticationService

    {

        public void SignIn(string userName, bool createPersistentCookie)

        {

            if (String.IsNullOrEmpty(userName)) throw new ArgumentException("Value cannot be null or empty.", "userName");

     //登录

            FormsAuthentication.SetAuthCookie(userName, createPersistentCookie);

        }

        public void SignOut()

        {

//登出

            FormsAuthentication.SignOut();

        }

    }

MembershipProvider provider = Membership.Provider;
var FormsService = new FormsAuthenticationService();

if (provider.ValidateUser(model.UserName, model.Password))
{
        FormsService.SignIn(model.UserName, model.RememberMe);
}

---

设置connectionString来改变数据来源
<add name="ApplicationServices" connectionString="data source=.\SQLEXPRESS;Integrated Security=SSPI;AttachDBFilename=|DataDirectory|aspnetdb.mdf;User Instance=true" providerName="System.Data.SqlClient"/>

<add name="ApplicationServices" connectionString="Data Source=xxx,1023;Initial Catalog=xxxx;Persist Security Info=True;User ID=xxx;Password=xxx" providerName="System.Data.SqlClient"/>

---

<!--指定需要权限验证的位置，path中填入相对根目录的位置名（目录或指定到文件）-->
  <location path="CSFinance">
    <system.web>
      <authorization>
        <deny users="?"/>
      </authorization>
    </system.web>
  </location>

---

配置验证条件

<authentication mode="Forms">
      <forms loginUrl="~/Account/LogOn" timeout="2880"/>
    </authentication>
    <authorization>
      <deny users="?"/>
    </authorization>

    <membership>
      <providers>
        <clear/>
        <add name="AspNetSqlMembershipProvider" type="System.Web.Security.SqlMembershipProvider" connectionStringName="ApplicationServices" passwordFormat="Clear" enablePasswordRetrieval="true" enablePasswordReset="true" requiresQuestionAndAnswer="false" requiresUniqueEmail="false" maxInvalidPasswordAttempts="5" minRequiredPasswordLength="5" minRequiredNonalphanumericCharacters="0" passwordAttemptWindow="30" applicationName="/"/>
      </providers>
    </membership>

    <profile>
      <providers>
        <clear/>
        <add name="AspNetSqlProfileProvider" type="System.Web.Profile.SqlProfileProvider" connectionStringName="ApplicationServices" applicationName="/"/>
      </providers>
    </profile>

    <roleManager enabled="true">
      <providers>
        <clear/>
        <add connectionStringName="ApplicationServices" applicationName="/" name="AspNetSqlRoleProvider" type="System.Web.Security.SqlRoleProvider"/>
        <add applicationName="/" name="AspNetWindowsTokenRoleProvider" type="System.Web.Security.WindowsTokenRoleProvider"/>
      </providers>
    </roleManager>