Part 6: ASP.NET Membership
ASP.NET用户机制
Tailspin Spyworks demonstrates how extraordinarily simple it is to create powerful, scalable applications for the .NET platform. It shows off how to use the great new features in ASP.NET 4 to build an online store, including shopping, checkout, and administration.
通过Tailspin Spyworks 演示在.NET平台创建功能强大,结构良好的应用程序有多么简单。演示如何使用ASP.NET 4的新特性创建一个包含购物、结算和管理功能的在线网店。
This tutorial series details all of the steps taken to build the Tailspin Spyworks sample application. Part 6 adds ASP.NET Membership.
本系列指南对构建案例程序的每一步做了详细的解释。第六部分添加ASP.NET用户机制。
ASP.NET用户机制
Click Security
点击Security:
Make sure that we are using forms authentication.
确认我们使用的是表单认证方式。
Use the "Create User" link to create a couple of users.
使用“创建用户”链接,创建一些用户。
When done, refer to the Solution Explorer window and refresh the view.
做完之后,刷新解决方案。
Note that the ASPNETDB.MDF fine has been created. This file contains the tables to support the core ASP.NET services like membership.
注意:ASPNETDB.MDF已经创建,文件中包含用户机制所需的数据表。
Now we can begin implementing the checkout process.
现在我们可以实现结算了。
Begin by creating a CheckOut.aspx page.
从创建 CheckOut.aspx 页面开始。
The CheckOut.aspx page should only be available to users who are logged in so we will restrict access to logged in users and redirect users who are not logged in to the LogIn page.
CheckOut.aspx 页面只能由网站的已登录用户访问,如果还没有登录,访问 CheckOut.aspx 时将跳转到LogIn页面。
To do this we'll add the following to the configuration section of our web.config file.
为了实现验证,在web.config的configuration部分添加如下内容:
<location path="Checkout.aspx"> <system.web> <authorization> <deny users="?" /> </authorization> </system.web> </location>
The template for ASP.NET Web Forms applications automatically added an authentication section to our web.config file and established the default login page.
应用程序已经在创建时自动在web.config文件添加了认证的设置部分,并创建了默认的login页面。
<authentication mode="Forms"> <forms loginUrl="~/Account/Login.aspx" timeout="2880" /> </authentication>
We must modify the Login.aspx code behind file to migrate an anonymous shopping cart when the user logs in. Change the Page_Load event as follows.
我们必须修改一下login.aspx的代码,当用户登录后将匿名的购物车转换为已知用户的购物车。Page_Load函数修改后代码如下:
using System.Web.Security; protected void Page_Load(object sender, EventArgs e) { // If the user is not submitting their credentials // save refferer if (!Page.IsPostBack) { if (Page.Request.UrlReferrer != null) { Session["LoginReferrer"] = Page.Request.UrlReferrer.ToString(); } } // User is logged in so log them out. if (User.Identity.IsAuthenticated) { FormsAuthentication.SignOut(); Response.Redirect("~/"); } }
Then add a "LoggedIn" event handler like this to set the session name to the newly logged in user and change the temporary session id in the shopping cart to that of the user by calling the MigrateCart method in our MyShoppingCart class. (Implemented in the .cs file)
添加如下代码的“LoggedIn”事件处理函数,将登录的用户名记录在session里,并且调用MyShoppingCart类的MigrateCart 方法把购物车中此前记录的临时session id修改为用户名。
protected void LoginUser_LoggedIn(object sender, EventArgs e) { MyShoppingCart usersShoppingCart = new MyShoppingCart(); String cartId = usersShoppingCart.GetShoppingCartId(); usersShoppingCart.MigrateCart(cartId, LoginUser.UserName); if(Session["LoginReferrer"] != null) { Response.Redirect(Session["LoginReferrer"].ToString()); } Session["UserName"] = LoginUser.UserName; }
Implement the MigrateCart() method like this.
MigrateCart函数的代码如下:
//--------------------------------------------------------------------------------------+ public void MigrateCart(String oldCartId, String UserName) { using (CommerceEntities db = new CommerceEntities()) { try { var myShoppingCart = from cart in db.ShoppingCarts where cart.CartID == oldCartId select cart; foreach (ShoppingCart item in myShoppingCart) { item.CartID = UserName; } db.SaveChanges(); Session[CartId] = UserName; } catch (Exception exp) { throw new Exception("ERROR: Unable to Migrate Shopping Cart - " + exp.Message.ToString(), exp); } } }
In checkout.aspx we'll use an EntityDataSource and a GridView in our check out page much as we did in our shopping cart page.
在checkout.aspx页还是使用EntityDataSource 和GridView ,方法和在购物车页面使用方法类似。
<div id="CheckOutHeader" runat="server" class="ContentHead"> Review and Submit Your Order </div> <span id="Message" runat="server"><br /> <asp:Label ID="LabelCartHeader" runat="server" Text="Please check all the information below to be sure it's correct."> </asp:Label> </span><br /> <asp:GridView ID="MyList" runat="server" AutoGenerateColumns="False" DataKeyNames="ProductID,UnitCost,Quantity" DataSourceID="EDS_Cart" CellPadding="4" GridLines="Vertical" CssClass="CartListItem" onrowdatabound="MyList_RowDataBound" ShowFooter="True"> <AlternatingRowStyle CssClass="CartListItemAlt" /> <Columns> <asp:BoundField DataField="ProductID" HeaderText="Product ID" ReadOnly="True" SortExpression="ProductID" /> <asp:BoundField DataField="ModelNumber" HeaderText="Model Number" SortExpression="ModelNumber" /> <asp:BoundField DataField="ModelName" HeaderText="Model Name" SortExpression="ModelName" /> <asp:BoundField DataField="UnitCost" HeaderText="Unit Cost" ReadOnly="True" SortExpression="UnitCost" DataFormatString="{0:c}" /> <asp:BoundField DataField="Quantity" HeaderText="Quantity" ReadOnly="True" SortExpression="Quantity" /> <asp:TemplateField> <HeaderTemplate>Item Total</HeaderTemplate> <ItemTemplate> <%# (Convert.ToDouble(Eval("Quantity")) * Convert.ToDouble(Eval("UnitCost")))%> </ItemTemplate> </asp:TemplateField> </Columns> <FooterStyle CssClass="CartListFooter"/> <HeaderStyle CssClass="CartListHead" /> </asp:GridView> <br /> <asp:imagebutton id="CheckoutBtn" runat="server" ImageURL="Styles/Images/submit.gif" onclick="CheckoutBtn_Click"> </asp:imagebutton> <asp:EntityDataSource ID="EDS_Cart" runat="server" ConnectionString="name=CommerceEntities" DefaultContainerName="CommerceEntities" EnableFlattening="False" EnableUpdate="True" EntitySetName="ViewCarts" AutoGenerateWhereClause="True" EntityTypeFilter="" Select="" Where=""> <WhereParameters> <asp:SessionParameter Name="CartID" DefaultValue="0" SessionField="TailSpinSpyWorks_CartID" /> </WhereParameters> </asp:EntityDataSource>
Note that our GridView control specifies an "ondatabound" event handler named MyList_RowDataBound so let's implement that event handler like this.
GridView 控件中设置了"ondatabound" 事件的处理函数为MyList_RowDataBound,此函数代码如下:
decimal _CartTotal = 0; //--------------------------------------------------------------------------------------+ protected void MyList_RowDataBound(object sender, GridViewRowEventArgs e) { if (e.Row.RowType == DataControlRowType.DataRow) { TailspinSpyworks.Data_Access.ViewCart myCart = new Data_Access.ViewCart(); myCart = (TailspinSpyworks.Data_Access.ViewCart)e.Row.DataItem; _CartTotal += myCart.UnitCost * myCart.Quantity; } else if (e.Row.RowType == DataControlRowType.Footer) { if (_CartTotal > 0) { CheckOutHeader.InnerText = "Review and Submit Your Order"; LabelCartHeader.Text = "Please check all the information below to be sure it's correct."; CheckoutBtn.Visible = true; e.Row.Cells[5].Text = "Total: " + _CartTotal.ToString("C"); } } }
This method keeps a running total of the shopping cart as each row is bound and updates the bottom row of the GridView.
方法在对每一行进行数据绑定时,计算累加总额,然后更新GridView最底部的行。
At this stage we have implemented a "review" presentation of the order to be placed.
我们实现了结算时的“总览”功能。
Let's handle an empty cart scenario by adding a few lines of code to our Page_Load event:
在Page_load中添加一些处理空购物车状态的代码。
protected void Page_Load(object sender, EventArgs e) { CheckOutHeader.InnerText = "Your Shopping Cart is Empty"; LabelCartHeader.Text = ""; CheckoutBtn.Visible = false; }
When the user clicks on the "Submit" button we will execute the following code in the Submit Button Click Event handler.
当用户点击“Submit”按钮后,在按钮的响应函数中执行如下代码:
protected void CheckoutBtn_Click(object sender, ImageClickEventArgs e) { MyShoppingCart usersShoppingCart = new MyShoppingCart(); if (usersShoppingCart.SubmitOrder(User.Identity.Name) == true) { CheckOutHeader.InnerText = "Thank You - Your Order is Complete."; Message.Visible = false; CheckoutBtn.Visible = false; } else { CheckOutHeader.InnerText = "Order Submission Failed - Please try again. "; } }
The "meat" of the order submission process is to be implemented in the SubmitOrder() method of our MyShoppingCart class.
提交的实质过程将在MyShoppingCart类中的SubmitOrder()函数中实现。
SubmitOrder will:
SubmitOrder将:
- Take all the line items in the shopping cart and use them to create a new Order Record and the associated OrderDetails records.
根据购物车内的商品创建一条订单记录和相应的订单详情记录。 - Calculate Shipping Date.
计算发货日期。 - Clear the shopping cart.
清空购物车
//--------------------------------------------------------------------------------------+ public bool SubmitOrder(string UserName) { using (CommerceEntities db = new CommerceEntities()) { try { //------------------------------------------------------------------------+ // Add New Order Record | //------------------------------------------------------------------------+ Order newOrder = new Order(); newOrder.CustomerName = UserName; newOrder.OrderDate = DateTime.Now; newOrder.ShipDate = CalculateShipDate(); db.Orders.AddObject(newOrder); db.SaveChanges(); //------------------------------------------------------------------------+ // Create a new OderDetail Record for each item in the Shopping Cart | //------------------------------------------------------------------------+ String cartId = GetShoppingCartId(); var myCart = (from c in db.ViewCarts where c.CartID == cartId select c); foreach (ViewCart item in myCart) { int i = 0; if (i < 1) { OrderDetail od = new OrderDetail(); od.OrderID = newOrder.OrderID; od.ProductID = item.ProductID; od.Quantity = item.Quantity; od.UnitCost = item.UnitCost; db.OrderDetails.AddObject(od); i++; } var myItem = (from c in db.ShoppingCarts where c.CartID == item.CartID && c.ProductID == item.ProductID select c).FirstOrDefault(); if (myItem != null) { db.DeleteObject(myItem); } } db.SaveChanges(); } catch (Exception exp) { throw new Exception("ERROR: Unable to Submit Order - " + exp.Message.ToString(), exp); } } return(true); }
For the purposes of this sample application we'll calculate a ship date by simply adding two days to the current date.
这里只是在当前日期的基础上加上两天作为预计的发货日期。
//--------------------------------------------------------------------------------------+ DateTime CalculateShipDate() { DateTime shipDate = DateTime.Now.AddDays(2); return (shipDate); }
Running the application now will permit us to test the shopping process from start to finish.
运行程序,现在可以从头到尾执行购物过程了。
扫一扫
3259
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
