12,162
社区成员
发帖
与我相关
我的任务
分享WCF服务验证:UserNamePasswordValidator的用法
请教下,怎么把静态的服务验证改为动态的连接数据库验证?
原始数据如下:
public class MyUserNamePasswordValidator : UserNamePasswordValidator
{
//#region 声明变量
//DBHelper DBHelper = new DBHelper();
//#endregion
public override void Validate(string str_userName, string str_password)
{
try
{
if (str_userName != "admin" || str_password != "admin")
{
Console.WriteLine("UserNamePassword Validatation is failed !:{0}", str_userName);
throw new SecurityTokenException("Unknown Username or Password");
}
else
{
Console.WriteLine("UserNamePassword Validatation is sucessfully !:{0}", str_userName);
}
}
catch (Exception)
{
throw;
}
}
}
---------------------------------------------
自己修改的如下:
/// <summary>
/// 测试
/// </summary>
/// <param name="str_userName"></param>
/// <param name="str_password"></param>
/// <returns></returns>
public IList<RMSLoginRoleLoadInfo> SelectLogin(string str_userName, string str_password)
{
try
{
string sql = "SELECT COUNT(*) FROM [dbo].[RMSLogin] WHERE [nvcLogin] = '" + str_userName + "' AND [nvcPwd] = '" + str_password + "'";
if (sql != "")
{
return DataTableExtensions.ToList<RMSLoginRoleLoadInfo>(DBHelper.DTable(Commands.DBName, sql));
}
}
catch (Exception)
{
throw;
}
}
原始数据如下:
public class MyUserNamePasswordValidator : UserNamePasswordValidator
{
//#region 声明变量
//DBHelper DBHelper = new DBHelper();
//#endregion
public override void Validate(string str_userName, string str_password)
{
try
{
if (str_userName != "admin" || str_password != "admin")
{
Console.WriteLine("UserNamePassword Validatation is failed !:{0}", str_userName);
throw new SecurityTokenException("Unknown Username or Password");
}
else
{
Console.WriteLine("UserNamePassword Validatation is sucessfully !:{0}", str_userName);
}
}
catch (Exception)
{
throw;
}
}
}
---------------------------------------------
自己修改的如下:
/// <summary>
/// 测试
/// </summary>
/// <param name="str_userName"></param>
/// <param name="str_password"></param>
/// <returns></returns>
public IList<RMSLoginRoleLoadInfo> SelectLogin(string str_userName, string str_password)
{
try
{
string sql = "SELECT COUNT(*) FROM [dbo].[RMSLogin] WHERE [nvcLogin] = '" + str_userName + "' AND [nvcPwd] = '" + str_password + "'";
if (sql != "")
{
return DataTableExtensions.ToList<RMSLoginRoleLoadInfo>(DBHelper.DTable(Commands.DBName, sql));
}
}
catch (Exception)
{
throw;
}
}
...全文
请发表友善的回复…
发表回复
goodsoft 2013-02-06
- 打赏
- 举报
wcf身份验证你可以考虑下拦截消息头,挺方便改成数据库验证的
你可以参考下csdn这个大牛写的文章
http://blog.csdn.net/fangxinggood/article/details/6144893
While_Devil 2013-02-06
- 打赏
- 举报
在线坐等。