Today's I would discuss How to Authenticate Username and Password<
Requirement for this Application.
1)Database --- I have named "dblogin"
2)Table --- I have named "tbuser"
3)Stored Procedure --- I have named "sp_loginCheck"
------------------------------------------------------------------------------------------------
tbuser table 2 columns and both are varchar type.
------------------------
uname upass
------------------------
admin admin
amit amit
------------------------
Code for the stored procedure "sp_loginCheck"
CREATE PROCEDURE sp_loginCheck
(
@uname varchar(50),
@upass varchar(50)
)
AS
declare @abspwd varchar(50)
select @abspwd=upass from tbuser where uname=@uname
if @abspwd is null
return -1
else if @abspwd = @upass
return 1
else
return -2
After save the stored procedure the "create" keyword convert into "alter" keyword
-----------------------------------------------------------------------------------------------
The following code for the Design Page (Source)
<form id="form1" runat="server">
<div>
Username
<asp:TextBox ID="TextBox1" runat="server"></asp:TextBox>
<br />
<br />
Password
<asp:TextBox ID="TextBox2" runat="server" TextMode="Password"></asp:TextBox>
<br />
<br />
<asp:Button ID="Button1" runat="server" onclick="Button1_Click" Text="Submit" />
</div>
</form>
------------------------------------------------------------------------------------------------
Following Code For the Default.aspx.cs File (Code Page)
using System;
using System.Configuration;
using System.Data;
using System.Linq;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.HtmlControls;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Xml.Linq;
using System.Data.SqlClient;
public partial class _Default : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
}
protected void Button1_Click(object sender, EventArgs e)
{
SqlConnection con = new SqlConnection("server=monty\\baljeet;database=dblogin;uid=sa;pwd=123456789");
con.Open();
SqlCommand cmd = new SqlCommand("sp_loginCheck", con);
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.Add("@uname", SqlDbType.VarChar, 50).Value = TextBox1.Text;
cmd.Parameters.Add("@upass", SqlDbType.VarChar, 50).Value = TextBox2.Text;
cmd.Parameters.Add("@ret", SqlDbType.Int).Direction = ParameterDirection.ReturnValue;
cmd.ExecuteNonQuery();
Int32 i = Convert.ToInt32(cmd.Parameters["@ret"].Value);
if (i == -1)
{
Response.Write("Wrong User");
}
else if (i == 1)
{
Response.Write("Login");
}
else
{
Response.Write("Wrong Password");
}
}
}
Labels: CheckUserNameAndPassword
