1.配置系统文件web.config
<system.web>
<authentication mode="Forms" >
<forms name=".yaoCookies"
loginUrl="login.aspx"
protection="All"
timeout="20"
path="/" />
</authentication>
指定拒绝或者准许的用户或者角色,详细请参考MSDN上介绍
<authorization>
<allow users="*" />
<deny users="?" />
</authorization>
</system.web>
?/P>
?/P> 2.登录页
//登录按钮
private void Button1_Click(object sender, System.EventArgs e)
{
//实体类AdminUserVO对应AdminUser用户表。
AdminUserVO adminUserVO = new AdminUserVO();
adminUserVO.Uname = UserName.Text.Trim();
adminUserVO.Upwd = UserPwd.Text.Trim();
adminUserVO.LastIP = HttpContext.Current.Request.UserHostAddress;
adminUserVO.LastTime = DateTime.Now;
bool flag = (new LoginDAO()).Chk(adminUserVO);
if (flag)
{
//非角色验证时:
System.Web.Security.FormsAuthentication.SetAuthCookie(UserName.Text.Trim(),false);
string requestUrl = FormsAuthentication.GetRedirectUrl(FormsAuthentication.FormsCookieName,false);
//创建角色验证信息,把role信息写入到UserData中
//见基于角色的Forms认证步骤
//SetLoginCookie(adminUserVO,adminUserVO.Roles.ToLower());
HttpContext.Current.Response.Redirect(requestUrl);
}
else
{
HttpContext.Current.Response.Write("登录失败");
}
}