public static string Login(string name, string pwd)
{
string sql = "select * from table_users where c_login_name='" + DALSecurityTool.TransferInsertField(name) + "' and c_pwd='" +
DALSecurityTool.TransferInsertField(SecurityFactory.GetSecurity().Encrypt(pwd)) + "'";
ArrayList lists = FT.DAL.Orm.SimpleOrmOperator.QueryList(typeof(UserObject), sql);
if (lists.Count == 0)
{
return("2");
}
else
{
UserObject user = lists[0] as UserObject;
RoleObject role = FT.DAL.Orm.SimpleOrmOperator.Query <RoleObject>(user.RoleId);
DepartMent dept = FT.DAL.Orm.SimpleOrmOperator.Query <DepartMent>(user.DepId);
OperatorTick ot = new OperatorTick(user.Id, user.FullName, user.DepId, role.RoleString, pwd);
ot.Desp1 = user.WorkId;
ot.Desp2 = dept.ParentCode;
ot.Desp3 = dept.DepCode;
ot.Desp4 = dept.DepFullName;
ot.Desp5 = user.FullName;
ot.Desp6 = role.RoleName;
ot.Desp7 = user.Km;
ot.Desp8 = string.Empty;
return(FT.Web.OperatorTick.GenerateOpTicket(ot));
}
//return "1";
}
public static string Login(string name, string pwd)
{
string sql = "select * from table_user_info where c_login_name='" + DALSecurityTool.TransferInsertField(name) + "' and c_pwd='" +
DALSecurityTool.TransferInsertField(SecurityFactory.GetSecurity().Encrypt(pwd)) + "'";
ArrayList lists = FT.DAL.Orm.SimpleOrmOperator.QueryList(typeof(UserInfo), sql);
if (lists.Count == 0)
{
return("2");
}
else
{
UserInfo user = lists[0] as UserInfo;
RoleInfo role = FT.DAL.Orm.SimpleOrmOperator.Query <RoleInfo>(user.RoleId);
DepartmentInfo dept = FT.DAL.Orm.SimpleOrmOperator.Query <DepartmentInfo>(user.DepId);
OperatorTick ot = new OperatorTick(user.Id, user.FullName, user.DepId, role.MenuStr, pwd);
ot.Desp1 = user.WorkId;
ot.Desp2 = dept.GlbmCode;
ot.Desp3 = dept.DepCode;
ot.Desp4 = dept.DepFullName;
ot.Desp5 = user.FullName;
ot.Desp6 = role.MenuStr;
ot.Desp7 = role.RightStr;
ot.Desp8 = user.Km.ToString();
return(FT.Web.OperatorTick.GenerateOpTicket(ot));
}
//return "1";
}
public static OperatorTick GetLoginUser()
{
if (System.Web.HttpContext.Current.Session["OperatorInfo"] == null)
{
return(new OperatorTick(-1, "mockuser", -1, "", ""));
}
else
{
OperatorTick op = OperatorTick.GetFromString(System.Web.HttpContext.Current.Session["OperatorInfo"].ToString());
return(op);
}
}
protected void Button1_Click(object sender, EventArgs e)
{
string userName = FT.DAL.DALSecurityTool.TransferInsertField(this.txtUserName.Text);
string pwd = FT.DAL.DALSecurityTool.TransferInsertField(this.txtPassword.Text);
pwd = DATA_CONVERT.CryptPasswd(pwd);
DataTable dt = FT.DAL.DataAccessFactory.GetDataAccess().SelectDataTable("select a.*,b.rolestring from users a left join roletable b on a.userole=b.roleid where cusername='******' and cpassword='******'", "temptable");
if (dt != null && dt.Rows.Count > 0)
{
DataRow dr = dt.Rows[0];
OperatorTick op = new OperatorTick(Convert.ToInt32(dr[0].ToString()), dr[1].ToString(), Convert.ToInt32(dr[10].ToString()), dr[13].ToString(), this.txtPassword.Text);
Session["OperatorInfo"] = OperatorTick.GenerateOpTicket(op);
Response.Redirect("../SystemAdmin/admin.htm");
}
else
{
FT.Web.Tools.WebTools.Alert(this.Page, "登陆失败,请检查用户名和密码!");
}
}
public static string Login(string name, string pwd)
{
string sql = "select * from table_users where c_login_name='" + DALSecurityTool.TransferInsertField(name) + "' and c_pwd='" +
DALSecurityTool.TransferInsertField(SecurityFactory.GetSecurity().Encrypt(pwd)) + "'";
ArrayList lists = FT.DAL.Orm.SimpleOrmOperator.QueryList(typeof(UserObject), sql);
if (lists.Count == 0)
{
return("2");
}
else
{
UserObject user = lists[0] as UserObject;
OperatorTick ot = new OperatorTick(user.Id, user.FullName, -1, "", pwd);
ot.Desp5 = user.FullName;
ot.Desp8 = string.Empty;
return(FT.Web.OperatorTick.GenerateOpTicket(ot));
}
//return "1";
}
