Esempio n. 1
0
        /// <summary>
        /// 登录校验
        /// </summary>
        private void ValidateLogin()
        {
            StringBuilder str              = new StringBuilder();
            HttpContext   context          = System.Web.HttpContext.Current;
            string        username         = context.Request.Params["username"];
            string        password         = context.Request.Params["password"];
            string        verificationCode = context.Request.Params["verificationCode"];

            if (string.IsNullOrEmpty(username))
            {
                str.Append("{\"IsSuccess\":false,\"Msg\":\"用户名不能为空\"}");
                context.Response.Write(str.ToString());
                return;
            }
            if (string.IsNullOrEmpty(password))
            {
                str.Append("{\"IsSuccess\":false,\"Msg\":\"密码不能为空\"}");
                context.Response.Write(str.ToString());
                return;
            }
            if (string.IsNullOrEmpty(verificationCode))
            {
                str.Append("{\"IsSuccess\":false,\"Msg\":\"验证码不能为空\"}");
                context.Response.Write(str.ToString());
                return;
            }

            object verificationCodeServer = context.Session[ConfigManager.GetVerificationCode_SessionName()];

            if (verificationCodeServer == null || verificationCodeServer.Equals(String.Empty))
            {
                str.Append("{\"IsSuccess\":false,\"Msg\":\"服务器端找不到验证码\"}");
                context.Response.Write(str.ToString());
                return;
            }


            if (string.IsNullOrEmpty(verificationCode) || !verificationCode.ToString().Equals(verificationCodeServer.ToString(), StringComparison.CurrentCultureIgnoreCase))
            {
                str.Append("{\"IsSuccess\":false,\"Msg\":\"验证码不正确\"}");
                context.Response.Write(str.ToString());
                return;
            }

            object loginCount = context.Session["loginCount"];
            int    waitTime   = ConfigManager.GetLoginErrorWait();

            if (loginCount != null && loginCount.ToInt32(0) >= ConfigManager.GetAllowLoginCount() && !string.IsNullOrEmpty(context.Session["loginForbidTime"].ToString2()))
            {
                DateTime oldTime = DateTime.Parse(context.Session["loginForbidTime"].ToString2());
                TimeSpan span    = DateTime.Now - oldTime;

                if (span.Minutes < waitTime)
                {
                    str.Append("{\"IsSuccess\":false,\"Msg\":\"你登录错误已超过" + ConfigManager.GetAllowLoginCount() + "次,请" + (waitTime - span.Minutes) + "分钟后重试\"}");
                    context.Response.Write(str.ToString());
                    return;
                }
                else
                {
                    context.Session["loginCount"]      = 0;
                    context.Session["loginForbidTime"] = "";
                }
            }
            if (systemBLL.UserLogin(username, password))
            {
                if (loginCount != null)
                {
                    context.Session["loginCount"] = 0;
                }
                AppUser workUser = new AppUser();

                workUser = systemBLL.InitAppUser(username, password).Result;
                //更新用户登录时间
                systemBLL.UpdateLoginTime(workUser.UserID, DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss"));
                context.Session[ConfigManager.GetSignInAppUserSessionName()] = workUser;

                LoginManager.SetLoginID(workUser.UserID);
                if (string.IsNullOrEmpty(workUser.qyID))
                {
                    str.Append("{\"IsSuccess\":true,\"Msg\":\"登录成功\",\"url\":\"/WxjzgcjczyPage/MainPage/Index.aspx\"}");
                }
                else
                {
                    str.Append("{\"IsSuccess\":true,\"Msg\":\"登录成功\",\"url\":\"/WxjzgcjczyPage/MainPage/Index2.aspx\"}");
                }
                context.Response.Write(str.ToString());
            }
            else
            {
                loginCount = context.Session["loginCount"];
                if (loginCount == null)
                {
                    loginCount = 1;
                }
                else
                {
                    loginCount = loginCount.ToInt32(0) + 1;
                }
                context.Session["loginCount"] = loginCount;

                if (loginCount != null && loginCount.ToInt32(0) == ConfigManager.GetAllowLoginCount())
                {
                    context.Session["loginForbidTime"] = DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss");
                }

                str.Append("{\"IsSuccess\":false,\"Msg\":\"用户名或密码错误\"}");
                context.Response.Write(str.ToString());
            }
        }