在做一个前台的登陆和后台的信息审核管理功能时,需要用到记住密码的模块:
虽然.net内置了登陆控件,有记住密码的功能,但还是想自己实践一下,以下代码主要应用了cookie,包括安全加密的过程等。
复制代码 代码如下:
//设置,删除cookie
//provider jb51.net
protected void set_cookie()
{
Httpcookie UserNamecookie = Request.cookies["UserNamecookie"];
Httpcookie UserPasswordcookie = Request.cookies["UserPasswordcookie"];
if (this.CheSave.Checked)
{
lblcookie.Text = "1";
//保存用户名和密码到cookie
if (UserNamecookie == null)
{
UserNamecookie = new Httpcookie("UserNamecookie");
UserNamecookie.Values.Add("UserName", TxtUserName.Text);
UserNamecookie.Expires = DateTime.Now.AddDays(30);
Response.cookies.Add(UserNamecookie);
}
//修改cookie
else if (UserNamecookie.Values["UserName"] != TxtUserName.Text)
{
SetTocookie(UserNamecookie, "UserName", TxtUserName.Text);
}
if (UserPasswordcookie == null)
{
UserPasswordcookie = new Httpcookie("UserPasswordcookie");
string password1 = FormsAuthentication.HashPasswordForStoringInConfigFile(TxtUserPassword.Text, "MD5"); //如果重新指定用户密码,则重新加密密码
UserPasswordcookie.Values.Add("UserPassword", password1);
UserPasswordcookie.Expires = DateTime.Now.AddDays(30);
Response.cookies.Add(UserPasswordcookie);
}
else if (UserPasswordcookie.Values["UserPassword"] != FormsAuthentication.HashPasswordForStoringInConfigFile(TxtUserPassword.Text, "MD5") && TxtUserPassword.Text != "1234567890")
//“1234567890”是程现在密码框中的十个字符。
{
SetTocookie(UserPasswordcookie, "UserPassword", FormsAuthentication.HashPasswordForStoringInConfigFile(TxtUserPassword.Text, "MD5"));
}
}
else
{
lblcookie.Text = "0";
//从cookie删除用户名和密码
if (Response.cookies["UserNamecookie"] != null)
{
Httpcookie mycookie = new Httpcookie("UserNamecookie");
mycookie.Expires = DateTime.Now.AddDays(-1d);
Response.cookies.Add(mycookie);
}
if (Response.cookies["UserPasswordcookie"] != null)
{
Httpcookie mycookie = new Httpcookie("UserPasswordcookie");
mycookie.Expires = DateTime.Now.AddDays(-1d);
Response.cookies.Add(mycookie);
}
}
}
//检查是否存在cookie情况
public void check_cookie()
{
Httpcookie UserNamecookie = Request.cookies["UserNamecookie"];
Httpcookie UserPasswordcookie = Request.cookies["UserPasswordcookie"];
if (UserNamecookie != null)
{
this.CheSave.Checked = true;
TxtUserName.Text = UserNamecookie.Values["UserName"];
}
if (UserPasswordcookie != null)
{
TxtUserPassword.Attributes.Add("value", "1234567890");//设置密码框初始值
}
}
public string getpassword()
{
Httpcookie UserPasswordcookie = Request.cookies["UserPasswordcookie"];
string strpwd = ""; //获取此密码字符串与数据库存中的密布相比。
if (lblcookie.Text == "1")
{
strpwd = UserPasswordcookie.Values["UserPassWord"];//直接获取cookie中的密码值
}
else
{
strpwd= FormsAuthentication.HashPasswordForStoringInConfigFile(TxtUserPassword.Text, "MD5"); //对密码进行加密
}
return strpwd; //返回密码字段
}
//修改cookie这段的方法
public void SetTocookie(Httpcookie httpcookie, string cookiename, string cookievalue)
{
httpcookie.Values[cookiename] = cookievalue;
httpcookie.Expires = DateTime.Now.AddDays(30);
Response.cookies.Add(httpcookie);
}
}
