62,046
社区成员
发帖
与我相关
我的任务
分享
<%@ WebHandler Language="C#" Class="login" %>
using System;
using System.Web;
public class login : IHttpHandler {
public void ProcessRequest (HttpContext context) {
context.Response.ContentType = "text/plain";
//context.Response.Write("0");
context.Response.Write(Convert.ToInt32(admin_login.login(context.Request.QueryString["admin_username"], context.Request.QueryString["admin_pwd"])));
}
public bool IsReusable {
get {
return false;
}
}
}
using System;
using System.Data;
using System.Configuration;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.Data.SqlClient;
using System.Web.SessionState;
/// <summary>
/// admin_login 的摘要说明
/// </summary>
public class admin_login : System.Web.SessionState.IRequiresSessionState
{
public admin_login()
{
//
// TODO: 在此处添加构造函数逻辑
//
}
public static int login(string u, string p)
{
string username = u;
string password = System.Web.Security.FormsAuthentication.HashPasswordForStoringInConfigFile(p, "MD5");
string querystring = "select count(*) from admin_user where username='" + username + "' and password='" + password + "'";
string strCon = ConfigurationSettings.AppSettings["ConToSQL"];
SqlConnection sqlcon = new SqlConnection(strCon);
SqlCommand cmd = new SqlCommand(querystring, sqlcon);
try
{
sqlcon.Open();
//SqlDataReader dr = cmd.ExecuteReader();
int i = int.Parse(cmd.ExecuteScalar().ToString());
while (i == 1)
{
HttpContext.Current.Session.Add("adminusername", "admin");
return 0;
}
return 1;//用户名错误
}
catch (Exception e)
{
return 2;//数据库错误
}
finally
{
cmd.Dispose();
sqlcon.Close();
}
}
}