/// <summary> /// check user name/password combination /// </summary> /// <param name="sender"></param> /// <param name="e"></param> protected void cmdLogin_Click(object sender, System.EventArgs e) { UserClass _userlogin = new UserClass(); HttpCookie _acookie = new HttpCookie("user"); try { string _username = txtUserName.Text.Replace("'", "''"); string _pass = wwi_security.EncryptString(txtPassword.Text.Replace("'", "''"),"publiship"); _userlogin = _userlogin.Login(_username, _pass); if (_userlogin != null && _userlogin.ID != Guid.Empty) { Session["user"] = _userlogin; if (Request.Browser.Cookies) { if (chbSavePassword.Checked) { _acookie["userlogin"] = txtUserName.Text; _acookie["userpwd"] = _pass; //txtPassword.Text; //expires after 1 year _acookie.Expires = DateTime.Now.AddYears(1); } else { //expires midnight //DateTime _dt = Convert.ToDateTime(DateTime.Now.ToShortDateString() + " 00:00:00"); //expires in 1 hour DateTime _dt = DateTime.Now.AddHours(1); //DateTime.Now + new TimeSpan(1, 0, 0); _acookie.Expires = _dt; } Response.Cookies.Add(_acookie); } } else { if (_userlogin == null) { //this.lblMsg.Text = "<div class='fberrorbox'>Null login</div>"; } else if (_userlogin.ID == Guid.Empty) { //this.lblMsg.Text = "<div class='fberrorbox'>No guid</div>"; } else { //this.lblMsg.Text = "<div class='fberrorbox'>Invalid Login</div>"; } _userlogin = null; Session.Remove("user"); } } catch { _userlogin = null; Session.Remove("user"); //this.lblMsg.Text = "<div class='fberrorbox'>Invalid Login</div>"; } if (_userlogin != null) { Redirect(true); } else { this.lblmsg.Visible = true; } }
/// <summary> /// check user name/password combination /// </summary> /// <param name="sender"></param> /// <param name="e"></param> protected void cmdLogin_Click(object sender, System.EventArgs e) { UserClass _userlogin = new UserClass(); HttpCookie _acookie = new HttpCookie("user"); string _message = null; try { string _username = txtUserName.Text.Replace("'", "''"); string _pass = wwi_security.EncryptString(txtPassword.Text.Replace("'", "''"), "publiship"); _userlogin = _userlogin.Login(_username, _pass); if (_userlogin != null && _userlogin.loginValue != 0) //if (_userlogin != null && _userlogin.ID != Guid.Empty) { Session["user"] = _userlogin; if (Request.Browser.Cookies) { if (dxchbSavePassword.Checked) { _acookie["userlogin"] = txtUserName.Text; _acookie["userpwd"] = _pass; //txtPassword.Text; //expires after 1 year _acookie.Expires = DateTime.Now.AddYears(1); } else { //expires midnight //DateTime _dt = Convert.ToDateTime(DateTime.Now.ToShortDateString() + " 00:00:00"); //expires in 1 hour DateTime _dt = DateTime.Now.AddMinutes(10); //DateTime.Now + new TimeSpan(1, 0, 0); _acookie.Expires = _dt; } Response.Cookies.Add(_acookie); } } else { if (_userlogin == null) //if (_userlogin == null || _userlogin.ID == Guid.Empty) { //this.lblMsg.Text = "<div class='fberrorbox'>Null login</div>"; _message = " Invalid user name or password"; } else //userLogin.loginValue = 0 to indicate error { _message = " Not able to verify user due to a technical error"; //this.lblMsg.Text = "<div class='fberrorbox'>Invalid Login</div>"; } } } catch { _userlogin = null; Session.Remove("user"); } finally { //if (_userlogin != null) if(_message == null) { Redirect(true); } else { _userlogin = null; Session.Remove("user"); this.lblmsg.Text = _message; this.dxpnlmsg.Visible = true; } }//end finally }