protected void Button1_Click(object sender, EventArgs e) { UsersService userService = new UsersService(); Users user = new Users(); string name = userName.Text; string pwd = password.Text; user.LoginName = name; user.Password = pwd; user = userService.CheckLogin(user); if (user == null) alter.Text = "用户名或密码不正确"; else { Session["user"] = user; Response.Redirect("view/AdminTemp.aspx"); } }
/// <summary> /// 验证用户登录,登录成功则返回该用户对象,失败返回null /// </summary> /// <param name="user">要验证的用户对象</param> /// <returns>返回用户对象,登录失败返回null</returns> public Users CheckLogin(Users user) { Users returnUser = null; string sql = "select * from tb_user where user_name=@loginName and user_password=@password"; SqlParameter[] values = new SqlParameter[]{ new SqlParameter("@loginName",user.LoginName), new SqlParameter("@password",user.Password) }; DataTable dt = DBHelper. GetDataTable(sql, values); if (dt.Rows.Count > 0) { DataRow dr=dt.Rows[0]; returnUser = new Users(); returnUser.LoginName = user.LoginName; returnUser.Password = user.Password; returnUser.Id = Convert.ToInt32(dr["id"]); } return returnUser; }