private void btnLogin_Click(object sender, System.Web.UI.ImageClickEventArgs e) { //对用户名密码进行认证 string user = txtUserName.Text; string pass = txtPwd.Text; if (FormsAuthentication.Authenticate(user, pass)) { //登陆成功返回之前验证页,不保存验证密码. FormsAuthentication.RedirectFromLoginPage(user,false); } }
---------------
web.config
<location path="Main.aspx"> <system.web> <authorization> <allow users="admin" /> <deny users="*" /> </authorization> </system.web> </location>
<authentication mode="Forms"> <forms name="Looke_Admin" loginUrl="~/Login.aspx" path="/" protection="All" timeout="60"> <credentials passwordFormat="Clear"> <user name="admin" password="admin"/> </credentials> </forms> </authentication>
<!-- AUTHORIZATION This section sets the authorization policies of the application. You can allow or deny access to application resources by user or role. Wildcards: "*" mean everyone, "?" means anonymous (unauthenticated) users. -->
<authorization> <allow users="admin" /> <deny users="*" /> <!-- Allow all users --> <!-- <allow users="[comma separated list of users]" roles="[comma separated list of roles]"/> <deny users="[comma separated list of users]" roles="[comma separated list of roles]"/> --> </authorization>
