Display Log In date Problem

Question

0.00/5 (No votes)

See more:

I have two module in my website jobseeker and recruiter.
I have to display lastlogin date in each page of 2 modules.

my login code is

C#

protected void btnlogin_Click(object sender, EventArgs e)
    {


        string q = "select count(*) from logdate where eid = '" + txtuname.Text.Trim() + "' and password = '" + txtpasswd.Text.Trim() + "'" ;
        cmd = new SqlCommand(q, cnn);
        object obj;
        obj = cmd.ExecuteScalar();
        if (obj.ToString() == "1")
        {
            cmd = new SqlCommand("Select * from logtable where eid ='" + txtuname.Text + "'", cnn);
            SqlDataReader dr = cmd.ExecuteReader();
            dr.Read();
            
            Session["eid"] = dr["eid"].ToString();
            Session["password"] = dr["password"].ToString();
            dr.Close();
            Response.Redirect("seekerhome.aspx");
        }
        else
        {
            txtuname.Text = "";
            txtpasswd.Text = "";
            lblmsg.Text = "Either E-Mail ID or Password is wrong..!";
        }

        cnn.Close();
    }

so can you help me following this code how can i display my last log in date?
I also confused in this logic also.

Posted 22-Jul-12 22:02pm

aarohi verma

Add a Solution

3 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Mohamed Mitwalli · Answer 1 · 2012-07-22T22:23:00

Hi,
It seems you are not storing log in date into your DataBase so the First thing is When user log in store the log in date in your dateBase and in the next time and you can show it to user by simple Query
Another thing you can use parametrize Query so you can Avoid SQL Injections
Best Regards
M.Mitwalli

AshishChaudha · Answer 2 · 2012-07-22T23:33:00

Always use parameterised Query, so that SQL injection won't be done.

C#

protected void btnlogin_Click(object sender, EventArgs e)
    {
        string q = "select count(*) from logdate where eid = @Name and password = @Password";
        cmd = new SqlCommand(q, cnn);
        cmd.Parameters.Add("@Name",  txtuname.Text.Trim());
        cmd.Parameters.Add("@Password", txtpasswd.Text.Trim());        
        object obj;
        obj = cmd.ExecuteScalar();
        if (obj.ToString() == "1")
        {
            cmd = new SqlCommand("Select * from logtable where eid =@Name", cnn);
            cmd.Parameters.Add("@Name",  txtuname.Text.Trim());  
            SqlDataReader dr = cmd.ExecuteReader();
            dr.Read();
            //Put the current login time in a session here and also insert into a table for accessing it next time when user logs in again.

            Session["eid"] = dr["eid"].ToString();
            Session["password"] = dr["password"].ToString();
            dr.Close();
            Response.Redirect("seekerhome.aspx");
        }
        else
        {
            txtuname.Text = "";
            txtpasswd.Text = "";
            lblmsg.Text = "Either E-Mail ID or Password is wrong..!";
        }

        cnn.Close();
    }

Thanks
Ashish

StianSandberg · Answer 3 · 2012-07-22T22:58:00

Solution 2

You should read my article about security. Your code is vulnerable for sql-injections and you are storing passwords are clear text.

Beginners guide to a secure way of storing passwords[^]

To show last login date, just store the date now in your table when a user is logging in successfully.

Posted 22-Jul-12 22:58pm

StianSandberg

Updated 22-Jul-12 22:59pm

v2

Display Log In date Problem

3 solutions

Solution 1

Solution 3

Solution 2

Add your solution here

Preview 0