如果用户名和密码存在,我有简单的身份验证类型我在数据库中检查我创建 FormsAuthenticationTicket 并将其添加 HttpContext.Current.Response.Cookies.Add(cookie); 当我在请求之前检查 HttpContext.Current.User.Identity.IsAuthenticated 它返回 false 但如果我在 global.asax Application_AuthenticateRequest(object sender, EventArgs e) 中检查以下请求 HttpContext.Current.User.Identity.IsAuthenticated 返回 true
public static bool Login(string userName, string pass)
{
using (SqlConnection conn = new SqlConnection(connectionString))
{
try
{
conn.Open();
string comand = string.Format("Select * From ChatUser Where " +
"userName = '{0}' and pass ='{1}'", userName, pass);
SqlCommand cmd = new SqlCommand(comand, conn);
var reader = cmd.ExecuteReader();
if (!reader.HasRows)
{
conn.Close();
return false;
}
while (reader.Read())
{
string id = reader["id"].ToString();
FormsAuthenticationTicket ticket = new FormsAuthenticationTicket(
1, id, DateTime.Now, DateTime.Now.AddMinutes(30),
false, null, FormsAuthentication.FormsCookiePath);
string hashCookies = FormsAuthentication.Encrypt(ticket);
HttpCookie cookie = new HttpCookie(FormsAuthentication.FormsCookieName, hashCookies);
HttpContext.Current.Response.Cookies.Add(cookie);
}
conn.Close();
JoinMesage();
return true;
}
catch (Exception ex)
{
//write in log file
return false;
}
}
}
public static void JoinMesage()
{
string userId;
if (HttpContext.Current.User != null)
{
userId = HttpContext.Current.User.Identity.Name;
using (SqlConnection conn = new SqlConnection(connectionString))
{
string comand = string.Format("Insert into Messages (userID,mesageDate,userStatus)"
+ " Value('{0}','{1}','{2}')", userId, DateTime.Now, true);
}
}
}