asp.net登录问题 [英] asp.net Login problem
问题描述
我在我的网站(asp.net C#)中遇到登录问题.
当我使用loginid和密码登录时,登录成功.
我已经编写了用于在登录时检查和验证用户身份的代码,但是注销后会出现问题.
在单击注销链接时,我会将用户重定向到登录页面或其他任何页面,但是当我按浏览器的后退按钮时,将重新打开同一页面,即注销之前的页面.
请帮帮我.
我为此使用了会话和cookie,但是(会话已过期,cookie被销毁了)
问题仍然存在.
我看到很多网站(asp.net)也有相同的问题,例如160by2.com可以查看此网站.
请对此提供帮助.
致谢.
Hi,
I am facing a problem with login in my website (asp.net C#).
When I login using loginid and password the login is successful.
I have written the code to check and authenticate a user while logging in, but the problem occurs after logout.
On clicking logout link I redirect the user to login page, or whatsoever, but when I press back button of browser then the same page is reopened i.e. page before logout.
Please help me.
I used session and cookies for this but (session is expired and cookies are destroyed)
The problem remains.
I see lots of websites(asp.net) they also have the same problem, like 160by2.com you can check this website.
Please help me regarding this.
Thanks & Regards.
推荐答案
手动滚动ASP.NET安全性是一项非常复杂的任务,而不仅仅是在每个页面中放置一些代码(或超类),如您所知,这种方法非常脆弱.
有用的是,该框架具有用于处理身份验证和授权的良好ASP.NET基础结构:基础知识在这里:
http://www.asp.net/security/tutorials/security- basics-and-asp-net-support-cs [ ^ ],成员资格和角色提供者具有特殊的兴趣. 此 [此 [ ^ ]和此 [
Hand-rolling ASP.NET security is a pretty complicated task, and isn''t just a matter of putting some code in each page (or a superclass), this methodolgy is pretty brittle, as you have found out.
Helpfully, the framework has a good ASP.NET infrastructure for handling Authentication and Authorisation: The basics are here:
http://www.asp.net/security/tutorials/security-basics-and-asp-net-support-cs[^], the Membership and Role Providers are of special intrest. This[^] and this[^] and this[^] should be enough to get you started :-)
如果您使用表单身份验证
If you are using forms authentication
// Page load event of Logout.aspx
FormsAuthentication.SignOut();
Response.Redirect("Default.aspx");
类似的讨论此处 [
Similar discussion here[^]
嗨 您可以在 Global.asax 文件中设置以下代码
Hi You can set following code in your Global.asax file
void Session_Start(object sender, EventArgs e)
{
// Code that runs when a new session is started
if (Session["UserID"] == null)
{
Response.Redirect("Login.aspx?Message=Please login...");
}
}
如有任何疑问,请让我知道.
请提供"投票":thumbsup:如果有帮助,请提供"接受答案",如果这是正确的答案.:rose:
谢谢,
Imdadhusen
}
Please do let me know, if you have any doubt.
Please provide "Vote":thumbsup: if this would be helpful, and make "Accept Answer" if this would be correct answer.:rose:
Thanks,
Imdadhusen
这篇关于asp.net登录问题的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!