protected void btnLogin_Click(object sender, EventArgs e) { ClsUserInfo objUserInfo = new ClsUserInfo(); DataTable dtUserInfo = new DataTable(); if (IsValidEntry() == false) { return; } //Check for valid data entry Session["UserInfo"] = null; string MenuList = ""; dtUserInfo = objLtmsService.GetIsValidUser(txtUserId.Text.Trim(), txtUserPassword.Text.Trim()); if (dtUserInfo.Rows.Count > 0) { objUserInfo.UserId = dtUserInfo.Rows[0]["USERID"].ToString(); objUserInfo.DisplayName = dtUserInfo.Rows[0]["DISPLAYNAME"].ToString(); objUserInfo.EmailId = dtUserInfo.Rows[0]["EMAILID"].ToString().ToLower().Replace(" ", ""); objUserInfo.AccessAllowed = dtUserInfo.Rows[0]["LOCKED"].ToString().ToUpper() == "FALSE" ? true : false; objUserInfo.IsFirstTime = dtUserInfo.Rows[0]["IsFirstTime"].ToString().ToUpper() == "TRUE" ? true : false; if (objUserInfo.IsFirstTime == true) { Response.Redirect("frmChangePassword.aspx?ID=" + Guid.NewGuid().ToString()); } objUserInfo.UserRoleId = Convert.ToInt64(dtUserInfo.Rows[0]["USERROLEID"].ToString()); bool IsMenuAvailable = BuildMenuList(objUserInfo.UserRoleId, out MenuList); objUserInfo.MenuList = MenuList; if (objUserInfo.AccessAllowed == false) { // lblError.Text = "You have been blocked from using the System.<br>Please contact the Administrator for allowing you the access to the System."; } else { Session["UserInfo"] = objUserInfo; HttpCookie authCookie = new HttpCookie("appToken", Guid.NewGuid().ToString()); authCookie.HttpOnly = true; authCookie.Name = "appToken"; authCookie.Value = Guid.NewGuid().ToString(); Response.AppendCookie(authCookie); Session["AuthToken"] = authCookie.Value; Session["Allow"] = true; // Save Log for Login // objAppStartup.InsertInSysAudit(objBrandBusnessObjects, "System Access", "System Login Information", "Login", "<font color = 'green'>Successful Log-In in Web Application in " + Module + " Module from IP Address : " + Request.UserHostAddress + "</font>", "SYS_AUDIT"); ((ClsUserInfo)Session["UserInfo"]).MenuList = MenuList; try { Response.Redirect("appHome.aspx?ID=" + Guid.NewGuid().ToString(), false); // Server.Transfer("appHome.aspx?ID=" + Guid.NewGuid().ToString(),false); } catch (Exception ex) { } } } else { ScriptManager.RegisterStartupScript(this, GetType(), "MyMsg", "alert('Please enter valid User Id and password.');", true); txtUserId.Focus(); return; } }