how use session in login page

Question

2.33/5 (3 votes)

See more:

C#

using System;
using System.Collections;
using System.Configuration;
using System.Data;
using System.Linq;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.HtmlControls;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Xml.Linq;

public partial class login1 : System.Web.UI.Page
{
    
        Class1 obj = new Class1();
    protected void Page_Load(object sender, EventArgs e)
    {

    }
    protected void Button1_Click(object sender, EventArgs e)
    {
        

        DataSet ds = new DataSet();
        string qstr = "select * from login where UserName='" + TextBox1.Text + "'and password='" + TextBox2.Text + "'";
        obj.FillDs(qstr, ds);
        if (ds.Tables[0].Rows.Count == 1)
        {
            var un = TextBox1.Text;
            Response.Redirect("welcome.aspx?s="+un+"");
        }
        else
        {
            Label1.Text = "not valid user";
        }
    }
    }

Posted 13-Apr-11 18:39pm

Dharmpal Dhaka

Updated 13-Apr-11 18:40pm

Wild-Programmer

v2

Add a Solution

Comments

Pong D. Panda 14-Apr-11 0:43am

What's the question here? What implementation?

Prerak Patel 14-Apr-11 0:43am

Do you think the code is relevant? Moreover, using such a query for login is bad programming. Google 'SQL injection' to know more.

Pong D. Panda 14-Apr-11 0:54am

You got him right on the spot. Try to put this on your TextBox1.Text as your username and it will work like magic! ';DROP TABLE login--

3 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

M.S.Karthikeyan · Answer 1 · 2011-04-13T19:18:00

Solution 2

you can use session like this Session["username"]=TextBox.Text and retrive it like string username=Session["username"].ToString().

Posted 13-Apr-11 19:18pm

M.S.Karthikeyan

Prasanta_Prince · Answer 2 · 2011-04-13T20:56:00

Solution 3

Session["User"]=TxtUser.text;
Session["ID"]=ID;
Response.Redirect("Home.aspx");

Posted 13-Apr-11 20:56pm

Prasanta_Prince

Wild-Programmer · Answer 3 · 2011-04-13T18:43:00

Solution 1

Do you mean like this as in below code??

C#

if (ds.Tables[0].Rows.Count == 1)
{
      var un = TextBox1.Text;
      Session["UserName"] = TextBox1.Text;
      Session["Password"] = TextBox2.Text;
      Response.Redirect("welcome.aspx?s="+un+"");
}

Posted 13-Apr-11 18:43pm

Wild-Programmer

Comments

Wild-Programmer 14-Apr-11 2:15am

Why vote me 1, whats wrong with my code??? :(

Ali Al Omairi(Abu AlHassan) 14-Apr-11 3:36am

I dont think saving password in session is a good idea. and replace var with string.
+5

Wild-Programmer 14-Apr-11 6:27am

I agree, but OP asked question about session handling, in hurry I stored the password too :D
Sorry about that.

Ali Al Omairi(Abu AlHassan) 14-Apr-11 6:37am

you kow my friend, if you don't be not careful you wort survive here.