// 用户登录
private string userLogin()
{
myJson my = new myJson();
try
{
#region 检测用户名,密码
string userName = Funcs.Get("userName"); //用户名
string pwd = Funcs.Get("pwd"); //密码
string strSql = "select su.*,sp.paramsName userTypeName from system_users su inner join system_params sp on su.userType=sp.id where su.userName=@userName and su.password=@pwd";
SqlParameter[] param = new SqlParameter[] {
new SqlParameter("@userName", SqlDbType.VarChar)
{
Value = userName
},
new SqlParameter("@pwd", SqlDbType.VarChar)
{
Value = Funcs.MD5(pwd)
}
};
DataTable tb = Utility.SqlHelper.GetDataTable(strSql, param);
if (tb == null || tb.Rows.Count < 1)
{
my.flag = 0;
my.msg = "用户名或密码错误!";
return(JsonConvert.SerializeObject(my));
}
if (int.Parse(tb.Rows[0]["userstatus"].ToString()) == 0)
{
my.flag = 0;
my.msg = "您的帐号已暂停使用,请联系管理员!";
return(JsonConvert.SerializeObject(my));
}
#endregion
#region 保存用户信息,权限到Session
string loginUserId = tb.Rows[0]["id"].ToString();
//防止一个帐号多处登录
Global.Add(int.Parse(loginUserId), HttpContext.Current.Session.SessionID);
//保存用户的信息到Session
MySession.Add("userId", tb.Rows[0]["id"]);
MySession.Add("userName", tb.Rows[0]["userName"]);
MySession.Add("userTypeName", tb.Rows[0]["userTypeName"]);
MySession.Add("trueName", tb.Rows[0]["trueName"]);
#endregion
my.flag = 1;
my.msg = "登录成功";
return(JsonConvert.SerializeObject(my));
}
catch (Exception ex)
{
my.flag = 0;
my.msg = "登录失败:" + ex.Message;
return(JsonConvert.SerializeObject(my));
}
}
