protected void ctlGoeXpenseButton_Click(object sender, EventArgs e) { HttpCookie cookieUserToken = System.Web.HttpContext.Current.Request.Cookies["expUserToken"]; if (cookieUserToken != null) { System.Web.HttpContext.Current.Request.Cookies.Remove("expUserToken"); } HttpCookie cookieUserName = System.Web.HttpContext.Current.Request.Cookies["expUserName"]; if (cookieUserName != null) { System.Web.HttpContext.Current.Request.Cookies.Remove("expUserName"); } HttpCookie cookieFromApp = System.Web.HttpContext.Current.Request.Cookies["expFromApp"]; if (cookieFromApp != null) { System.Web.HttpContext.Current.Request.Cookies.Remove("expFromApp"); } string token = SuUserLoginTokenService.InsertToken(); string url = ParameterServices.eXpenseUrl; System.Web.HttpContext.Current.Response.Cookies.Add(new HttpCookie("expUserToken", token)); System.Web.HttpContext.Current.Response.Cookies.Add(new HttpCookie("expUserName", UserAccount.UserName)); System.Web.HttpContext.Current.Response.Cookies.Add(new HttpCookie("expFromApp", "ecc")); Response.Redirect(url); }
private void GetAuthentication() { string signinStatus = UserEngine.CheckSignIn(ctlUserName.Text.Trim(), ctlPassword.Text.Trim()); if (signinStatus.Equals("PasswordExpired") || signinStatus.Equals("RequiredChangePassword")) { //ChangePassword.ShowPopup("Login", true, ctlUserName.Text.Trim()); ChangePassword ctlChangePassword = LoadPopup <ChangePassword>("~/UserControls/ChangePassword.ascx", ctlPopUpUpdatePanel); ctlChangePassword.ShowPopup("Login", true, ctlUserName.Text.Trim()); } else if (signinStatus.Equals("success")) { bool UseECC = ScgDbQueryProvider.DbCompanyQuery.getUseECCOfComOfUserByUserName(ctlUserName.Text.Trim()); if (UseECC) { string url = HttpContext.Current.Request.Url.ToString(); if (ParameterServices.EnableSSLOnLoginPage && IsHttps()) { url = url.Replace(Uri.UriSchemeHttps, Uri.UriSchemeHttp); } if (string.IsNullOrEmpty(WFID)) { Response.Redirect(url.Replace(HttpContext.Current.Request.RawUrl, ResolveUrl("~/Menu.aspx")), true); } else { Response.Redirect(url.Replace(HttpContext.Current.Request.RawUrl, ResolveUrl("~/Forms/SCG.eAccounting/Programs/DocumentView.aspx?wfid=" + WFID)), true); } } else { HttpCookie cookieUserToken = System.Web.HttpContext.Current.Request.Cookies["expUserToken"]; if (cookieUserToken != null) { System.Web.HttpContext.Current.Request.Cookies.Remove("expUserToken"); } HttpCookie cookieUserName = System.Web.HttpContext.Current.Request.Cookies["expUserName"]; if (cookieUserName != null) { System.Web.HttpContext.Current.Request.Cookies.Remove("expUserName"); } string token = SuUserLoginTokenService.InsertToken(); string url = ParameterServices.eXpenseUrl; System.Web.HttpContext.Current.Response.Cookies.Add(new HttpCookie("expUserToken", token)); System.Web.HttpContext.Current.Response.Cookies.Add(new HttpCookie("expUserName", UserAccount.UserName)); //Response.Redirect(url + "?username="******"&token=" + token); Response.Redirect(url); } } else { ctlErrorValidationLabel.Text = GetMessage(signinStatus); ModalPopupExtender1ShowMessage.Show(); } }
protected void Page_Load(object sender, EventArgs e) { HttpCookie cookieUserName = System.Web.HttpContext.Current.Request.Cookies["expUserName"]; HttpCookie cookieUserToken = System.Web.HttpContext.Current.Request.Cookies["expUserToken"]; if (!string.IsNullOrEmpty(Request.QueryString["wfid"])) { WFID = Request.QueryString["wfid"].ToString(); } if ((cookieUserName != null && !string.IsNullOrEmpty(cookieUserName.Value.ToString())) && (cookieUserToken != null && !string.IsNullOrEmpty(cookieUserToken.Value.ToString()))) { string url = HttpContext.Current.Request.Url.ToString(); if (ParameterServices.EnableSSLOnLoginPage && IsHttps()) { url = url.Replace(Uri.UriSchemeHttps, Uri.UriSchemeHttp); } // check user & token in SuUserLoginToken and Delete token string userName = cookieUserName.Value.ToString(); string token = cookieUserToken.Value.ToString(); SuUserLoginToken userToken = SuUserLoginTokenService.CheckUserAndToken(userName, token); //clear value from cookies cookieUserName.Value = string.Empty; cookieUserToken.Value = string.Empty; System.Web.HttpContext.Current.Response.Cookies.Add(cookieUserName); System.Web.HttpContext.Current.Response.Cookies.Add(cookieUserToken); if (userToken != null) { SuUserLoginTokenService.DeleteToken(userName); UserEngine.SignIn(userName); if (string.IsNullOrEmpty(WFID)) { Response.Redirect(url.Replace(HttpContext.Current.Request.RawUrl, ResolveUrl("~/Menu.aspx")), true); } else { Response.Redirect(url.Replace(HttpContext.Current.Request.RawUrl, ResolveUrl("~/Forms/SCG.eAccounting/Programs/DocumentView.aspx?wfid=" + WFID)), true); } } // if not match user and token then show error page (create ArchiveLoginError.aspx) Response.Redirect(url.Replace(HttpContext.Current.Request.RawUrl, ResolveUrl("~/LoginError.aspx")), true); } else { string url = HttpContext.Current.Request.Url.ToString(); if (ParameterServices.EnableSSLOnLoginPage && !IsHttps()) { Response.Redirect(url.Replace(Uri.UriSchemeHttp, Uri.UriSchemeHttps), true); } } ctlPassword.Attributes.Add("OnKeyPress", "enter()"); if (!IsPostBack) { ctlUserName.Focus(); //if (!string.IsNullOrEmpty(Request.QueryString["wfid"])) // WFID = Request.QueryString["wfid"].ToString(); } }