Model --- public class Login { int _UserID; public int UserID { get { return _UserID; } set { _UserID = value; } } int _UserRole; public int UserRole { get { return _UserRole; } set { _UserRole = value; } } string _UserName; public string UserName { get { return _UserName; } set { _UserName = value; } } string _LoginId; public string LoginId { get { return _LoginId; } set { _LoginId = value; } } string _UserEmail; public string UserEmail { get { return _UserEmail; } set { _UserEmail = value; } } } view--- <div id="form_wrapper" class="form_wrapper"> <form class="login active" action=""> <h3> RTI Web App Log In</h3> <div> <label> Username:</label> <input id="username" value="cr2" type="text" /> <span class="error">This is an error</span> </div> <div> <label>Password: <a href="#" rel="forgot_password" class="forgot linkform">Forgot your password?</a></label> <input id="password" value="123456" type="password" /> <span class="error">This is an error</span> </div> <div class="bottom"> <input type="submit" value="Login" onclick="VarifyUser();" /> <div class="clear"> </div> </div> </form> <form class="forgot_password"> <h3>Forgot Password</h3> <div> <label>Username or Email:</label> <input type="text" /> <span class="error">This is an error</span> </div> <div class="bottom"> <input type="submit" value="Send reminder"></input> <a href="/User/LogOn" rel="login" class="linkform">Suddenly remebered? Log in here</a> <%--<a href="register.html" rel="register" class="linkform">You don't have an account? Register here</a>--%> <div class="clear"></div> </div> </form> </div> -------- script for view <script type="text/javascript"> function VarifyUser() { var Id = document.getElementById('username').value; var Password = document.getElementById('password').value; $.ajax({ url: "/Login/VarifyUser", type: "POST", data: { Id: Id, Password: Password }, datatype: "html", success: function(data) { if (data == "success") { window.location = '/Home/Index'; } else { alert(data); return false; } } }); } </script> ------ Controller public ActionResult Index() { return View(); } public string VarifyUser(string Id, string Password) { if (Id.ToLower().Contains("select") && Id.ToLower().Contains("from") || Id.ToLower().Contains("delete") && Id.ToLower().Contains("from")) { return "Please Don't Try to Hack this Site"; } else { try { cu.Loginname = Id; cu.Password = Password; CompositeUser Userdata = sc.GetUserDataContract(cu); // if (Userdata.Returnvalue == 1) // { //foreach( var User in Userdata) //{ if (Userdata.Active == 'N') { return "Your Account Has Been Closed !! Please Contact You Administrator"; } else if (Userdata.Active == 0) { return "Wrong Password or UserId"; } else { Login LoginUser = new Login() { UserID = Userdata.Id,//data.User_id, LoginId = Userdata.Loginname, //data.User_name, UserName = Userdata.Firstname + " " + Userdata.Lastname, //data.User_firstname + " " + data.User_firstname, UserRole = Userdata.Role, //data.User_role, UserEmail = Userdata.Email// data.User_email }; Session["UserID"] = Userdata.Id; Session["LoginId"] = Userdata.Loginname; Session["UserName"] = Userdata.Firstname + " " + Userdata.Lastname; Session["UserRole"] = Userdata.Role; Session["UserEmail"] = Userdata.Email; return "success"; // } // } // else // { // return "Invalid User"; // } } } catch { return "Error Occured !! Please Try By Refreshing The Page"; } } } --------
service ------------ function public CompositeUser GetUserDataContract(CompositeUser composite) { string loginname = composite.Loginname; string password = composite.Password; var data = from c in db.User_masters where (c.User_name.ToLower() == loginname && c.User_password.ToLower() == password) select c; if (data.Count() != 0) { foreach (var item in data) { composite.Active = item.IsActive; composite.Id = item.User_id; composite.Loginname = item.User_name; composite.Firstname = item.User_firstname; composite.Lastname = item.User_lastname; composite.Role = item.User_role; composite.Email = item.User_email; composite.Returnvalue = 1; } return composite; } else { return composite; } } ------------- [OperationContract(IsOneWay = false)] CompositeUser GetUserDataContract(CompositeUser composite); -------------------- define user [DataContract] public class CompositeUser { int _Id; string _User_firstname; string _User_lastname; int _User_role; public CompositeUser() { _User_firstname=""; _User_lastname=""; _User_role=0; } [DataMember] public int Id { get { return _Id; } set { _Id = value; } } [DataMember] public string Firstname { get { return _User_firstname; } set { _User_firstname = value; } } [DataMember] public string Lastname { get { return _User_lastname; } set { _User_lastname = value; } } [DataMember] public int Role { get { return _User_role; } set { _User_role = value; } } }
var
This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)