110,566
社区成员
发帖
与我相关
我的任务
分享
protected void Page_Load(object sender, EventArgs e)
{
int errNum;
string passwords;
int status;
//if (CheckForm())
SqlConnection con = new SqlConnection(ConfigurationManager.AppSettings["constr"]);
string sql1 = "select adminID, adminName, adminPwd,adminRight, errNum, status from [admin_Login] where adminName = '" + Users.Text + "'";
sql1 = sql1.Replace("##adminName", Users.Text.Trim());
SqlCommand com = new SqlCommand(sql1, con);
con.Open();
SqlDataReader sqldr = com.ExecuteReader();
if (sqldr.Read())
{ //从数据库中读出错误次数 密码 状态
errNum = (int)sqldr["errNum"];
passwords = sqldr["adminPwd"].ToString();
status = (int)sqldr["status"];
}
else
{
return;
}
if (errNum > 3)//判断错误次数是否超过3次,如果超过3次,则将数据库中状态置为1
{
Response.Write("<script language='javascript'>alert('您输入密码错误次数超过三次,账号冻结!')</script>");
sql1 = @"update [admin_Login] set status=1 where errNum>3";
}
else
{ //判断用户输入密码与数据库中密码是否一致
if (sqldr["adminPwd"].ToString() == Pwd.Text.Trim())
{
if (status == 0)//判断用户状态是否为0,为0则成功登录,为1则为无效账户
{
MessageBox.Show("登录成功!");
sql1 = @"update [admin_Login] set errNum=0 where status=0";//若登录成功,则将errNum次数置为0
}
else
{
Response.Write("<script language='javascript'>alert('您的账号已被冻结!')</script>");
}
}
else
{
errNum++;//如果密码输入错误,则在数据库中将错误次数加一次
sql1=@"update [admin_Login] set errNum = errNum+1";
}
}
}
protected void imgLogin_Click(object sender, ImageClickEventArgs e)
{
this.Label1.Text = System.Web.Security.FormsAuthentication.HashPasswordForStoringInConfigFile(this.Pwd.Text.Trim(), "md5");
string username = Users.Text.ToString();
string password = Pwd.Text.ToString();
if (username == "" || password == "")
{
Response.Write("<script language='javascript'>alert('请输入账号名和密码!')</script>");
}
else
{
SqlConnection conn = new SqlConnection(ConfigurationManager.AppSettings["constr"]);
string sql = "select * from admin_Login where adminName='" + Users.Text + "'and adminPwd='" + Pwd.Text + "'";
SqlCommand sqlcmd = new SqlCommand(sql, conn);
conn.Open();
SqlDataReader dr = sqlcmd.ExecuteReader();
if (dr.Read())
{
Session["Users"] = dr["adminName"].ToString();
Response.Redirect("../main.aspx");
dr.Close();
conn.Close();
}
else
{
Response.Write("<script language='javascript'>alert('用户名或密码不正确!')</script>");
Users.Text = "";
Users.Focus();
}
}
}
protected void Page_Load(object sender, EventArgs e)
{
}
protected void imgLogin_Click(object sender, ImageClickEventArgs e)
{
string username = Users.Text.ToString();
string password = Pwd.Text.ToString();
int errNum;
int status;
if (username == "" || password == "")
{
Response.Write("<script language='javascript'>alert('请输入账号名和密码!')</script>"); //提示 空 返回
}
else
{
SqlConnection conn = new SqlConnection(ConfigurationManager.AppSettings["constr"]);
string sql1 = "select * from admin_Login where adminName='" + Users.Text + "'and adminPwd='" + Pwd.Text + "'";
SqlCommand sqlcmd = new SqlCommand(sql1, conn);
conn.Open();
SqlDataReader dr = sqlcmd.ExecuteReader();
if (dr.Read())
{
status = (int)dr["status"]; //获取状态值
if (status == 1) // 状态=1 ,冻结
{
Response.Write("<script language='javascript'>alert('您的账号已被冻结!')</script>");
}
else // //更新err为0 登录成功
{
sql1 = @"update [admin_Login] set errNum=0 where status=0";
}
}
else
{
sql1 = @"update [admin_Login] set errNum +=1"; //更新err
if (dr.Read())
errNum = (int)dr["errNum"]; // 读取err
if (errNum >= 3) 此处出错:使用了未赋值的局部变量“errNum”
//登录失败 提示超过3次 返回
{
Response.Write("<script language='javascript'>alert('密码错误次数超过三次,禁止登陆!')</script>");
return;
}
else
{
sql1 = @"update [admin_Login] set errNum +=1"; //err加1 更新
Response.Write("<script language='javascript'>alert('用户名或密码不正确!')</script>");
}
}
}
}