public bool IsUserAuthorized(LoginRequest request) { var targetToken = AppConfigHelper.AdminToken; var source = string.Format("{0}_{1}", request.UserName, request.Password); var sourceToken = Security.ComputeMd5String(source); return targetToken == sourceToken; }
public ActionResult Login(LoginRequest request, string returnUrl) { if (!ModelState.IsValid) return View(); bool isAuthorize = _adminService.IsUserAuthorized(request); if(isAuthorize) { CookieHelper.SetCookie(CookieHelper.adminCookieKey, CookieHelper.GetNewToken()); return Redirect(returnUrl); } else { ModelState.AddModelError("unauthorize", "输入的用户名密码出错"); ViewBag.ReturnUrl = _index_url; return View(); } }