public ActionResult Login()
{
Session.Clear();//清除所有session变量
LoginModel model = new LoginModel();
string userName = (Request.QueryString["userName"] ?? "").ToString();
if (userName == "") return View(model);
var account = db.Accounts.FirstOrDefault(x => x.UserName == userName);
if (account != null)
{
model.UserName = userName;
model.Password = account.Password;
}
return View(model);
}
public ActionResult Login(LoginModel model)
{
if (!ModelState.IsValid) return View();
var account = db.Accounts.FirstOrDefault(x =>
x.UserName == model.UserName);
//注意:此处不把password的比较放到LINQ中,因为数据库默认是不区分大小写的!!!!!
if (account == null || account.Password != model.Password)//验证没通过
{
ModelState.AddModelError("error", "用户名或密码错误!");
return View();
}
////验证通过
//FormsAuthentication.SetAuthCookie(account.UserName, false);
//CurrentUser currentUser = new CurrentUser();
////currentUser.RoleCode = account.RoleCode;
////currentUser.RoleName = account.AccountRole.Name;
//currentUser.TrueName = account.UserName;
//currentUser.UserName = account.UserName;
////企业账号
//if (account.RoleCode.ToUpper().Trim().Equals("Enterprise".ToUpper()))
//{
// currentUser.EnterpriseID = account.Enterprise.ID;
// Session["CurrentUser"] = currentUser;
// return RedirectToAction("EditBasicInfo", "enterprise", new { code = "HH01" });
//}
////管理员账号
//if (account.RoleCode.ToUpper().Trim().Equals("SysAdmin".ToUpper()))
//{
// Session["CurrentUser"] = currentUser;
// return RedirectToAction("ShowEnterpriseList", "Admin", new { code = "DD01" });
//}
return View();
}
