成员管理
一、 Membership 类 : 创建和删除用户, 检索用户信 ,生成随机密码 , 登录验证
创建新用户:
二、 MembershipUser类:
描述在成员数据存储中单一的注册用户信息
包含了众多的属性来获取和设置用户信息
包含方法来检索、改变和重设密码
通过诸如GetUser 和CreateUser的属性返回值
属性:Comment CreationDate Email LastLoginDate LastPasswordChangedDate UserId UserName
方法: ChangePassword ChangePassword-QuestionAndAnswer GetPassword ResetPassword
挂起登录权限:
成员提供程序支持许多配置选项,密码如何被存储 (明文, 散列, 加密)?密码是否允许被恢复?用户是否必须有一个唯一的e-mail地址?通过提供程序类属性来表现,在配置文件中进行初始化
四、角色管理
方法:AddUserToRole CreateRole DeleteRole GetRolesForUser(查看用户角色) GetUsersInRole IsUserInRole RemoveUserFromRole
创建新角色
一、 Membership 类 : 创建和删除用户, 检索用户信 ,生成随机密码 , 登录验证
创建新用户:
try
{
Membership.CreateUser ("name", "password", "mail");
}
catch (MembershipCreateUserException e)
{
// 失败
switch (e.StatusCode)
{
case MembershipCreateStatus.DuplicateUsername:
case MembershipCreateStatus.DuplicateEmail:
case MembershipCreateStatus.InvalidPassword:
default:
}
}
登录验证:Membership.CreateUser ("name", "password", "mail");
}
catch (MembershipCreateUserException e)
{
// 失败
switch (e.StatusCode)
{
case MembershipCreateStatus.DuplicateUsername:
case MembershipCreateStatus.DuplicateEmail:
case MembershipCreateStatus.InvalidPassword:
default:
}
}
if
(Membership.ValidateUser (UserName.Text, Password.Text))
FormsAuthentication.RedirectFromLoginPage (UserName.Text,
RememberMe.Checked);
方法:CreateUser(创建用户) DeleteUser(删除用户) GeneratePassword(生产随即密码) GetAllUsers(得到用户) GetUser(查看某个用户) UpdateUser(修改用户) ValidateUser(验证是否成功)
FormsAuthentication.RedirectFromLoginPage (UserName.Text,
RememberMe.Checked);
二、 MembershipUser类:
描述在成员数据存储中单一的注册用户信息
包含了众多的属性来获取和设置用户信息
包含方法来检索、改变和重设密码
通过诸如GetUser 和CreateUser的属性返回值
属性:Comment CreationDate Email LastLoginDate LastPasswordChangedDate UserId UserName
方法: ChangePassword ChangePassword-QuestionAndAnswer GetPassword ResetPassword
挂起登录权限:
if
(Membership.ValidateUser (UserName.Text, Password.Text))
{
MembershipUser user = Membership.GetUser (UserName.Text);
user.Comment = "0"; //记录登录次数
RedirectFromLoginPage (UserName.Text, RememberMe.Checked);
}
else {
MembershipUser user = Membership.GetUser (UserName.Text);
if (user != null) {
string count = Convert.ToInt32 (user.Comment) + 1;
user.Comment = count.ToString ();
}
}
三 使用 SQL Server提供程序MembershipUser user = Membership.GetUser (UserName.Text);
user.Comment = "0"; //记录登录次数
RedirectFromLoginPage (UserName.Text, RememberMe.Checked);
}
else {
MembershipUser user = Membership.GetUser (UserName.Text);
if (user != null) {
string count = Convert.ToInt32 (user.Comment) + 1;
user.Comment = count.ToString ();
}
}
<
configuration
>
< system .web >
< membership defaultProvider ="AspNetSqlProvider" />
</ system.web >
</ configuration >
更改提供程序配置:
< system .web >
< membership defaultProvider ="AspNetSqlProvider" />
</ system.web >
</ configuration >
<
membership
>
< providers >
< remove name ="AspNetSqlProvider" />
< add name ="AspNetSqlProvider"
type ="System.Web.Security.SqlMembershipProvider, System.Web, "
connectionStringName ="RemoteSqlServer"
enablePasswordRetrieval ="false"
enablePasswordReset ="true"
requiresQuestionAndAnswer ="false"
applicationName ="/"
requiresUniqueEmail ="false"
passwordFormat ="Hashed"
description ="Stores and retrieves membership data "
/>
</ providers >
</ membership >
配置提供程序
< providers >
< remove name ="AspNetSqlProvider" />
< add name ="AspNetSqlProvider"
type ="System.Web.Security.SqlMembershipProvider, System.Web, "
connectionStringName ="RemoteSqlServer"
enablePasswordRetrieval ="false"
enablePasswordReset ="true"
requiresQuestionAndAnswer ="false"
applicationName ="/"
requiresUniqueEmail ="false"
passwordFormat ="Hashed"
description ="Stores and retrieves membership data "
/>
</ providers >
</ membership >
成员提供程序支持许多配置选项,密码如何被存储 (明文, 散列, 加密)?密码是否允许被恢复?用户是否必须有一个唯一的e-mail地址?通过提供程序类属性来表现,在配置文件中进行初始化
四、角色管理
方法:AddUserToRole CreateRole DeleteRole GetRolesForUser(查看用户角色) GetUsersInRole IsUserInRole RemoveUserFromRole
创建新角色
if
(
!
Roles.RoleExists (
"
Developers
"
))
{
Roles.CreateRole ("Developers");
}
增加用户到一个角色Roles.CreateRole ("Developers");
}
string
name
=
Membership.GetUser ().Username;
Roles.AddUserToRole (name, " Developers " );
配置Web.config启用角色Roles.AddUserToRole (name, " Developers " );
<
configuration
>
< system .web >
< roleManager enabled ="true" />
</ system.web >
</ configuration >
启用角色高速缓存< system .web >
< roleManager enabled ="true" />
</ system.web >
</ configuration >
<
configuration
>
< system .web >
< roleManager enabled ="true" cacheRolesInCookie ="true" />
<!-- Other roleManager attributes (and their defaults) include:
cookieName=".ASPXROLES" // Cookie name
cookieTimeout="30" // Cookie lifetime
cookiePath="/" // Cookie path
cookieRequireSSL="false" // Restrict cookie to SSL?
cookieSlidingExpiration="true" // Renew expiring cookies?
createPersistentCookie="false" // Issue persistent cookie?
cookieProtection="All" /> // Cookie protection level
-->
</ system.web >
</ configuration >
使用SQL Server提供程序< system .web >
< roleManager enabled ="true" cacheRolesInCookie ="true" />
<!-- Other roleManager attributes (and their defaults) include:
cookieName=".ASPXROLES" // Cookie name
cookieTimeout="30" // Cookie lifetime
cookiePath="/" // Cookie path
cookieRequireSSL="false" // Restrict cookie to SSL?
cookieSlidingExpiration="true" // Renew expiring cookies?
createPersistentCookie="false" // Issue persistent cookie?
cookieProtection="All" /> // Cookie protection level
-->
</ system.web >
</ configuration >
<
configuration
>
< system .web >
< roleManager enabled ="true" defaultProvider ="AspNetSqlRoleProvider" />
</ system.web >
</ configuration >
< system .web >
< roleManager enabled ="true" defaultProvider ="AspNetSqlRoleProvider" />
</ system.web >
</ configuration >