protected void Login1_LoginError(object sender, EventArgs e) { //There was a problem logging in the user //See if this user exists in the database MembershipUser userInfo = Membership.GetUser(Login2.UserName); if (userInfo == null) { //The user entered an invalid username... ((Label)Login2.FindControl("LoginErrorDetails")).Text = "There is no user in the database with the username " + Login2.UserName; } else { //See if the user is locked out or not approved if (!userInfo.IsApproved) { ((Label)Login2.FindControl("LoginErrorDetails")).Text = "Your account has not yet been approved by the site's administrators. Please try again later..."; } else if (userInfo.IsLockedOut) { ((Label)Login2.FindControl("LoginErrorDetails")).Text = "Your account has been locked out because of a maximum number of incorrect Login attempts. You will NOT be able to Login until you contact a site administrator and have your account unlocked."; } else { //The password was incorrect (don't show anything, the Login control already describes the problem) ((Label)Login2.FindControl("LoginErrorDetails")).Text = String.Empty; } } }
private bool SiteSpecificAuthenticationMethod(string UserName, string Password) { SqlConnection Dbconn = new SqlConnection(ConfigurationManager.ConnectionStrings["SSIRentConnectionString"].ToString()); CheckBox cek = (CheckBox)Login2.FindControl("RememberMe"); string cmdtext = "Select FirstName,LastName,USERID,[User] from usysPasswords where [User] = @User and Password = @Password"; SqlCommand cmd = new SqlCommand(cmdtext, Dbconn); Dbconn.Open(); cmd.Parameters.AddWithValue("@User", UserName); cmd.Parameters.AddWithValue("@Password", Password); try { SqlDataReader dr = cmd.ExecuteReader(); if (dr.HasRows) { dr.Read(); Session["Name"] = dr["FirstName"].ToString() + " " + dr["LastName"].ToString(); Session["USERID"] = dr["USERID"].ToString(); Session["UserName"] = dr["User"].ToString(); //FormsAuthentication.SetAuthCookie(Login2.UserName,true); FormsAuthenticationTicket ticket = new FormsAuthenticationTicket(1, Login2.UserName, DateTime.Now, DateTime.Now.AddMinutes(120), false, "ApplicationSpecific data for this user.", FormsAuthentication.FormsCookiePath); //encrypt ticket string encTicket = FormsAuthentication.Encrypt(ticket); Response.Cookies.Add(new HttpCookie(FormsAuthentication.FormsCookieName, encTicket)); //if (cek.Checked) //{ // HttpCookie cookie = new HttpCookie("username"); // cookie.Value = Login2.UserName; // cookie.Expires = DateTime.Now.AddDays(1);//cookie Expires // HttpContext.Current.Response.AppendCookie(cookie); //} return(true); } else { return(false); } } catch (Exception ex) { return(false); } finally { Dbconn.Close(); Dbconn.Dispose(); cmd.Dispose(); } }
private void Authenticate(AuthenticateEventArgs e) { string company = string.Empty; var ctl = Login2.FindControl("Company"); if (ctl != null) { company = ((TextBox)ctl).Text; } if (_prioritizerService.Authenticate(Login2.UserName, Prioritizer.Shared.Utils.EncodePassword(Login2.Password), company) != null) { e.Authenticated = true; } else { e.Authenticated = false; } }
private bool SiteSpecificAuthenticationMethod(string UserName, string Password) { using (SSIRentEntities context = new SSIRentEntities()) { var user = context.Database.SqlQuery <User>("exec sp_SYS_GetUserCredentials @UserName, @Password", new SqlParameter("UserName", UserName), new SqlParameter("Password", Password)).ToList(); if (user.Count > 0) { CheckBox cek = (CheckBox)Login2.FindControl("RememberMe"); Session["Name"] = user[0].Firstname + " " + user[0].LastName; Session["USERID"] = user[0].UserID; Session["UserName"] = UserName; FormsAuthenticationTicket ticket = new FormsAuthenticationTicket(1, Login2.UserName, DateTime.Now, DateTime.Now.AddMinutes(120), false, "ApplicationSpecific data for this user.", FormsAuthentication.FormsCookiePath); //encrypt ticket string encTicket = FormsAuthentication.Encrypt(ticket); Response.Cookies.Add(new HttpCookie(FormsAuthentication.FormsCookieName, encTicket)); //if (cek.Checked) //{ // HttpCookie cookie = new HttpCookie("username"); // cookie.Value = Login2.UserName; // // cookie.Expires = DateTime.Now.AddDays(1);//cookie Expires // HttpContext.Current.Response.AppendCookie(cookie); //} return(true); } else { return(false); } } }