How to have a user directed to one page and another user directed to another page

Question

1.00/5 (1 vote)

See more:

Hello. I am trying to find out how to code one user over the other. What I mean is I am CEO user and I have a IALO user. When the CEO logs in, I should be directed to Welcome CEO page. When the IALO logs in, there should be a Welcome IALO page. How would I do this in ASP.net? I have two tables. One table has the CEO users and the other has IALO users. Here is the code I have:

C#

using System;
using System.Data;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Data.SqlClient;
using System.Configuration;

public partial class Login : System.Web.UI.Page
{
    protected void Page_Load(object sender, EventArgs e)
    {
        
    }
    protected void Button1_Click(object sender, EventArgs e)
    {
        SqlConnection con = new SqlConnection(ConfigurationManager.ConnectionStrings["PassConnectionString"].ConnectionString);
        con.Open();

        string chkUser = "select count(*) from TableSecurity where EmailAddress = 'TextBox1.Text' and Password = 'TextBox2.Text'";
            SqlCommand chkUsercmd = new SqlCommand(chkUser, con);
            int i = Convert.ToInt16(chkUsercmd.ExecuteScalar().ToString());
        if(i<1)
        {


        string insCmd = "Insert into TableSecurity (EmailAddress, Password, Level) values (@EmailAddress, @Password, @Level)";
        SqlCommand insertUser = new SqlCommand(insCmd, con);
        insertUser.Parameters.AddWithValue("@EmailAddress", TextBox1.Text);
        insertUser.Parameters.AddWithValue("@Password", TextBox2.Text);
        insertUser.Parameters.AddWithValue("@Level", TextBox1.Text);

    }
    else
{
    Session["New"] = TextBox1.Text;
    Response.Redirect("Secure.aspx");
}

        


        con.Close();
        con.Open();
       string cmdStr = "select count(*) from TableCEO where EmailAddress='" + TextBox1.Text + "'";
       cmdStr = "select count(*) from TableIALO where EmailAddress='" + TextBox1.Text + "'";
            SqlCommand Checkuser = new SqlCommand(cmdStr, con);
            int temp = Convert.ToInt32(Checkuser.ExecuteScalar().ToString());
            if (temp == 1)
            {
                string cmdStr2 = "Select Password from TableSecurity where Password='" + TextBox2.Text + "'";
                SqlCommand pass = new SqlCommand(cmdStr2, con);
                string password = pass.ExecuteScalar().ToString();
                con.Close();

                if (password == TextBox2.Text)
                {
                    Session["New"] = TextBox1.Text;
                    Response.Redirect("Secure.aspx");
                }
                else
                {
                    Label1.Visible = true;
                    Label1.Text = "Invalid Password!!!";
                }
            }
            else
            {
                Label1.Visible = true;
                Label1.Text = "Invalid UserName!!!";

Posted 29-Apr-13 8:56am

Computer Wiz99

Updated 29-Apr-13 9:00am

ZurdoDev

v2

Add a Solution

Comments

ZurdoDev 29-Apr-13 15:01pm

if (something) Response.Redirect("ceo.aspx") else Response.Redirect("someotherpage.aspx") This is very easy. Where are you stuck?

Computer Wiz99 29-Apr-13 15:03pm

I guess I am stuck on where to put the code. I wrote the code but had to make updates to it.

ZurdoDev 29-Apr-13 15:04pm

Where ever you are redirecting now, just add it there.

Computer Wiz99 29-Apr-13 15:05pm

Can you give me a clear spot?

ZurdoDev 29-Apr-13 15:12pm

Again, it depends on you and what you are doing. You already have Response.Redirect("Secure.aspx"); so you could do it there. Of course, I have no idea what Secure.aspx is so maybe you would need to do it after.

Computer Wiz99 29-Apr-13 15:04pm

Can I make my CEO table have a level different from my IALO Table?

ZurdoDev 29-Apr-13 15:05pm

I don't understand. It is your code so you can make it work however you need to.

Computer Wiz99 29-Apr-13 15:10pm

In a way. I was in a car wreck and in the hospital for a while. I am trying to get my memory back on my coding. I think I doing well so far but it is the little things that I am forgetting. Please Help!! :)

Sergey Alexandrovich Kryukov 29-Apr-13 15:13pm

Isn't it a re-post?
—SA

Computer Wiz99 29-Apr-13 15:15pm

No it is not a re-post. Different post same code with updates.

Sergey Alexandrovich Kryukov 29-Apr-13 15:36pm

"Same code with updates" certainly means a re-post. You should address all closely problems on the page of your original question; this one should be removed.
—SA

Computer Wiz99 29-Apr-13 15:39pm

I am just trying to show my code to where anyone can see what I have done so far and get a clear understanding where my problem might me. Would you give someone half of the directions or all of it in order for them to follow?

Sergey Alexandrovich Kryukov 29-Apr-13 15:49pm

Repeating of the phrase does not make it more clear. If you use "Improve question", it moved your question on the top again. But if you re-post, you only get down-voted and abuse report, which you don't want.
There are the rules for question posting...
—SA

Computer Wiz99 29-Apr-13 16:01pm

Ok. Thanks. Now Any help here on my question?

Thanks7872 30-Apr-13 0:08am

well,the requirement you have is handled in the asp.net through the concept called role and membership management.you can have a look at Managing Web Site Users with Roles ,ASP.NET Login Controls.That will help you overcome this issue.Further,you can have one column named 'xyz' which contains values such as CEO,USER,ADMIN.When user gets logged in,you can redirect her based on this columns value.Regards.

Computer Wiz99 30-Apr-13 7:17am

Thanks. Would you have an example code to show me on the last part you said?

Computer Wiz99 30-Apr-13 7:37am

Ok. Thanks. Can I replace my current code with this one and the function will work like I wanted them too? Will the username and password still be written to the TableSecurity?

Thanks7872 30-Apr-13 7:42am

you can give me your mail id so that i can send you some articles on using queries and validating users.

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Thanks7872 · Accepted Answer · 2013-04-30T01:31:00

Solution 1

C#

SqlConnection conn = new SqlConnection();
conn.ConnectionString = System.Configuration.ConfigurationManager.ConnectionStrings["leave"].ConnectionString;
conn.Open();
string uname = TextBox1.Text;
string pswd = Textbox2.Text;
SqlCommand cmd = new SqlCommand("Select uname, pswd from emp_details where uname =@uname and pswd =@pswd", conn);
cmd.Parameters.Add(new SqlParameter("@uname",uname));
cmd.Parameters.Add(new SqlParameter("@pswd",pswd));
SqlDataReader dr = cmd.ExecuteReader();
if (dr.Read())/*if user exists*/
{                
   string str = dr.GetString(0).ToString();
   dr.Close();
   /*get role of the username provided*/
   SqlCommand cmd2 = new SqlCommand("select role from users where uname=@str",conn);
   cmd.Parameters.Add(new SqlParameter("@str",str));
   SqlDataReader dr2 = cmd2.ExecuteReader();
   if (dr2.Read())
   {
     string role1= dr2.GetString(0).ToString();
     dr2.Close();
     /*redirect user based on the value of the role*/
     if (role1== "user")
         Response.Redirect("user.aspx");
     if (role1== "CEO")
         Response.Redirect("ceo.aspx");
   }
}
else/*user doesnot exist in your database*/
{
  /*Alert her and redirect her to signup page*/
  Response.Write("<script type='text/javascript'>");
  Response.Write("alert('Username does not exists.');");
  Response.Write("document.location.href='SignUp.aspx';");
  Response.Write("</script>");
}

Posted 30-Apr-13 1:31am

Thanks7872

Updated 30-Apr-13 1:59am

v3

Comments

Thanks7872 30-Apr-13 7:39am

you can use this in your function.what else functionality you need further?

Computer Wiz99 30-Apr-13 7:44am

The whole thing is that I have Three Tables. One is a CEO Table that has CEO records already in it. The other Table is the IALO Table that has IALO records already in it. The Last Table is the Security Table. It will store the username, password and Level. The other tables are there to be read by the program to see if the user has a record and allow the user to make up a username and password that will be stored in the Security Table.

Thanks7872 30-Apr-13 7:50am

i am lil bit confuse with what you have done.well as per as i understand this,you first want to login to the program and see who the user is?based on that you want to redirect the user.i didnt get The other tables are there to be read by the program to see if the user has a record and allow the user to make up a username and password that will be stored in the Security Table. Does it mean something like sign up?

Computer Wiz99 30-Apr-13 7:55am

Yes, that is correct. Within the CEO and IALO Tables they have the same thing, Email Address. That is the username. The program is reading to see if the record exist and if it does the user can make up his/her password that will be store in the security table with the email address (username) and the level. That user can login with what was made by them. If someone else comes and tries to login it will not happen because the user exist in the security table.

Thanks7872 30-Apr-13 8:00am

Have a look at the above answer.I have updated the code for signup.

Computer Wiz99 30-Apr-13 8:02am

Ok. Thanks. I was just about to ask you about the errors I have. One more thing. How do I set the roles? Can I do that is code or another source?

Computer Wiz99 30-Apr-13 8:09am

Can I delete the /*/ in the code?

Thanks7872 30-Apr-13 8:13am

yes thats comment lines buddy.you can use that syntax to mention what you have done in your code.i think you are new to this coding world thats the reason i asked you to provide with your mail id,so that i can give you some code snippets.

Thanks7872 30-Apr-13 8:09am

when you design the program,you have to make a admin.Now,you have someone who can monitor all users.When user signs up for the account admin gets notified about the newbie,and assigns her the appropriate role.e.g. i(user) created the account then you will get notified(admin) and you will assign me the role IALO.This Value will be used as role(ialouser).Store it in database and you are done.Every time i(user) logs into the system,roles column will be checked.It will find IALO for me and i will be redirected accordingly.

Computer Wiz99 30-Apr-13 8:12am

I have over 5000 users for each Table. Is there an easy way to give the tables the roles or not?

Thanks7872 30-Apr-13 8:19am

no.you have to apply role for each user if you go this way.

Computer Wiz99 30-Apr-13 8:22am

Ok. Well let me get started. Thanks for the help. It was way better than what I got lately. One more thing, I can put this code under my button click operation?

Thanks7872 30-Apr-13 8:24am

yes it will be there in the button's click event.

Computer Wiz99 30-Apr-13 8:26am

I don't see in the code where it is checking for the user within the CEO and IALO Tables. Did I miss something?

Computer Wiz99 30-Apr-13 8:15am

I have an error with: if (role1 == "CEO") Response.Redirect("Secure.aspx"); The error says the Embedded statement cannot be declaration or labeled statement.

Thanks7872 30-Apr-13 8:21am

try if(role1=="CEO"){Response.Redirect("Secure.aspx")}

Computer Wiz99 30-Apr-13 8:28am

Ok. I have this error now.
Must declare the scalar variable "@str"

Computer Wiz99 30-Apr-13 8:29am

SqlDataReader dr2 = cmd2.ExecuteReader();