注入式攻击是Web开放项目中开发人员的第一时间要考虑的问题,下面就我的开发实例分享给大家,有用的的话就点个赞吧。
定義賬戶信息類
public class UserInfors
{
public string EmployeeID { get; set; }
public string UserName { get; set; }
public string PassWord { get; set; }
/// <summary>
/// 重写Object类的ToString()方法
/// </summary>
/// <returns></returns>
public override string ToString()
{
return string.Format("賬號:{0},姓名:{1},密碼:{2}",
this.EmployeeID,
this.UserName,
this.PassWord);
}
} 使用LinQ進行用戶信息驗證
DataTable Users;
Users = ds.Tables[];
//創建一個學生集合
List<UserInfors> list = new List<UserInfors>();
foreach (DataRow dr in Users.Rows)
{
list.Add(new UserInfors()
{
EmployeeID = dr["EmployeeID"].ToString(),
UserName = dr["UserName"].ToString(),
PassWord =dr["PassWord"].ToString(),
});
}
var result = from r in list
where r.EmployeeID == userid && r.PassWord == password
select r;
if (result.Count() > )
{
string name="";
foreach (var ci in result)
{
name= ci.UserName;
} Session.Add("UsersName", name);
Session.Timeout = ;
Response.Clear();
Response.Write(name);
Response.End();
}