0

我对应用程序的要求是每个客户端的单个应用程序和多个数据库。所以我实现了自定义成员来实现这一点。首先,我根据该客户端数据库的连接字符串检查用户属于哪个客户端,我动态设置连接字符串并验证用户。

这是我的网络配置:

<membership defaultProvider="EPMembershipProvider" userIsOnlineTimeWindow="20">
  <providers>
    <clear />       
    <add name="EPMembershipProvider" type="EfficientPeople.GlobalClasses.EPMembershipProvider" connectionStringName="DBEntitiesConnectionString" enablePasswordReset="true" requiresQuestionAndAnswer="false" requiresUniqueEmail="false" maxInvalidPasswordAttempts="25" minRequiredPasswordLength="6" minRequiredNonalphanumericCharacters="0" passwordAttemptWindow="10" passwordStrengthRegularExpression="" applicationName="/" />
    <!--<add name="EPMembershipProvider" type="EfficientPeople.GlobalClasses.EPMembershipProvider, EfficientPeople"  connectionStringName="DBEntitiesConnectionString" enablePasswordReset="true" requiresQuestionAndAnswer="false" requiresUniqueEmail="false" maxInvalidPasswordAttempts="25" minRequiredPasswordLength="6" minRequiredNonalphanumericCharacters="0" passwordAttemptWindow="10" passwordStrengthRegularExpression="" applicationName="/" />-->
  </providers>
</membership>

<profile>
  <providers>
    <clear />
    <add name="AspNetSqlProfileProvider" type="System.Web.Profile.SqlProfileProvider" connectionStringName="DBEntitiesConnectionString" applicationName="/" />
  </providers>
</profile>
<roleManager enabled="true">
  <providers>
    <clear />
    <add connectionStringName="DBEntitiesConnectionString" applicationName="/" name="AspNetSqlRoleProvider" type="System.Web.Security.SqlRoleProvider" />
    <add applicationName="/" name="AspNetWindowsTokenRoleProvider" type="System.Web.Security.WindowsTokenRoleProvider" />
  </providers>
</roleManager>

自定义会员等级:

public class EPMembershipProvider : SqlMembershipProvider
{
    public override void Initialize(string name, System.Collections.Specialized.NameValueCollection config)
    {
        base.Initialize(name, config);
        // Update the private connection string field in the base class.  

        Int64 ClientId = Convert.ToInt64(HttpContext.Current.Session["_clientId"]);
        if (ClientId > 0)
        {
            UserLoginML objUL = new UserLoginML();

            //string _dbMembershipConnStr = ManageSessionFacade._dbMembershipConnStr;
            string _dbMembershipConnStr = HttpContext.Current.Session["_dbMembershipConnStr"].ToString();
            //string connectionString = ManageSessionVariable.Current._dbContextConnStr;

            if (_dbMembershipConnStr != "" && _dbMembershipConnStr != "db_not_validate" && _dbMembershipConnStr != "db_not_exist")
            {
                try
                {
                    // Set private property of Membership provider.  
                    //FieldInfo connectionStringField = GetType().BaseType.GetField("_sqlConnectionString", BindingFlags.Instance | BindingFlags.NonPublic);
                    //connectionStringField.SetValue(this, _dbMembershipConnStr);
                    FieldInfo connectionStringField = GetType().BaseType.GetField("_sqlConnectionString", BindingFlags.Instance | BindingFlags.NonPublic);
                    if (connectionStringField != null)
                        connectionStringField.SetValue(this, _dbMembershipConnStr);

                    //Set role provider
                    var roleField = Roles.Provider.GetType().GetField("_sqlConnectionString", System.Reflection.BindingFlags.Instance | System.Reflection.BindingFlags.NonPublic);
                    if (roleField != null)
                        roleField.SetValue(Roles.Provider, _dbMembershipConnStr);

                    //Set Profile Provider

                    var profileField = ProfileManager.Provider.GetType().GetField("_sqlConnectionString", System.Reflection.BindingFlags.Instance | System.Reflection.BindingFlags.NonPublic);
                    if (profileField != null)
                        profileField.SetValue(ProfileManager.Provider, _dbMembershipConnStr);
                }
                catch (Exception ex)
                {
                    throw ex;
                }

            }
        }
    }

当我使用客户端 A[DB1]-User1 登录时在本地运行我的应用程序时,登录成功。但是,当我注销并尝试使用 Client B [DB2] User2 登录时,它会抛出以下错误消息:

您的登录尝试不成功

当我再次运行应用程序时,反之亦然。使用客户端 B[DB2]-User2 登录成功,但是当我在同一个应用程序运行中尝试使用客户端 A[DB1]-User1 时,它会引发相同的错误。但我可以使用 Client B[DB2] 用户登录。

当我使用断点进行调试时,它会在

ValidateUser(字符串用户名,字符串密码)

方法。ValidateUser 方法返回 false。

我尝试了很多选择,但没有任何效果。请指导我完成。

4

1 回答 1

0

问题出在 SqlMembership 的 Initialize 方法上。当用户第一次登录时,它会调用初始化方法并设置连接字符串。当另一个用户尝试登录时,它使用相同的连接字符串。这就是为什么它没有验证。如果我们尝试调用 SqlMembershipProvider 的 Initialize 方法,它会抛出一个异常“InvalidOperationException:membership provider already initialized”。

因此,我创建了自定义成员资格的对象,并且当我使用新创建的对象调用 Membership validate 方法时,我可以设置我的连接字符串。

EPMembershipProvider myProvider = new EPMembershipProvider();
string configPath = "~/web.config";
Configuration config =     WebConfigurationManager.OpenWebConfiguration(configPath);
MembershipSection section = (MembershipSection)config.GetSection("system.web/membership");
ProviderSettingsCollection settings = section.Providers;
NameValueCollection membershipParams = settings[section.DefaultProvider].Parameters;
myProvider.Initialize("EPMembershipProvider", membershipParams);

bool Status = myProvider.ValidateUser(UserName, Password);

它成功地工作了。感谢所有的神... :-)

于 2015-06-29T07:05:58.160 回答