分享程序员开发的那些事...
更新时间:2023-12-03 18:41:52
修改您的web.config文件,请注意授权"部分
http://www.developerfusion.com/article/5385/highperformance-net -application-development-architecture/5/ [
Amend your web.config file, pay attention to the ''Authorisation'' section
http://www.developerfusion.com/article/5385/highperformance-net-application-development-architecture/5/[^]
<authorization>
<!-- General application authorization -->
<allow verbs="POST" users="Jimmy" roles="Administrators" />
<allow verbs="GET" users="Peter" roles="Debugger Users" />
<!-- URL Authorization -->
<allow users="domain1\user, domain2\group" />
<!--Deny anonymous or All Users-->
<deny users="? | *" />
</authorization>
在此部分,您可以允许\根据凭据,组成员身份等拒绝用户
This is the section where you can allow \ deny users based on credentials, group membership etc
<pre lang="xml"><authentication mode="Forms">
<forms defaultUrl="Secured/Default.aspx" loginUrl="Login.aspx">
</forms>
</authentication></pre>
<pre lang="xml"><system.web>
<authorization>
<deny users="?"/>
</authorization>
</system.web></pre>
in the code behind
<pre lang="cs">protected void btn_Submit_Click(object sender, EventArgs e)
{
if (TextBox1.Text == "UserName")
{
if (TextBox2.Text == "Password")
{
// Response.Redirect("~/Secured/Secured2.aspx");
FormsAuthentication.RedirectFromLoginPage(TextBox1.Text, false);
}
else
{
Label1.Text = "Enter Correct Password";
}
}
else
{
Label1.Text = "Enter Correct User Name";
}
}</pre>
<pre lang="sql">Use Forms Authentication for that
try this link
Link [^]</pre>
我认为您需要阅读一些有关身份验证及其在IIS环境中如何工作的信息.您所要求的内容不应仅在代码和SQL Server中处理.您应该合并内置的IIS身份验证过程以实现您的目标.
查看一些
I think you need to read up a bit on authentication and how it works in an IIS environment. What you are asking for should not be handled only in code and SQL Server. You should incorporate built in IIS authentication processes to achieve your goal.
Check out some of these links.