Dot.net安全机制

 

使用时添加以下引用单元

其中OleDb使用Access,sqlserver使用SqlClient

using System.Web.Security;
using System.Data.OleDb;

using System.Data.SqlClient;
using System.Configuration;

在web.config中配制authebtication

 <authentication mode="Forms">
        <forms name=".ASPXUSERDEMO" loginUrl="login.aspx" protection="All" timeout="60" />
      </authentication>
      <authorization>
        <deny users="?" />
  </authorization>

创建login.aspx页面

计算MD5：

string strInputPass = System.Web.Security.FormsAuthentication
    .HashPasswordForStoringInConfigFile("manager","md5");
   Response.Write(strInputPass); //从数据库中读出计算

if ((UserEmail.Text == "qianbo") && (UserPass.Text== strInputPass))
   {
    FormsAuthentication.RedirectFromLoginPage(UserEmail.Text, false);
   }
   else
   {
    Msg.Text = "Invalid Credentials: Please try again";
   }

 

 private void Page_Load(object sender, System.EventArgs e)
  {
   WelCome.Text = "Hello, " + User.Identity.Name;// 在此处放置用户代码以初始化页面
  
  }

  private void InitializeComponent()
  {   
   this.Button1.Click += new System.EventHandler(this.Button1_Click);
   this.Load += new System.EventHandler(this.Page_Load);

  }
  #endregion

登出：

  private void Button1_Click(object sender, System.EventArgs e)
  {
   FormsAuthentication.SignOut();
   Response.Redirect("login.aspx");
  }