asp.net使用存储过程实现用户登录_[Asp.Net教程]
cs代码如下
string UserName = txtUserName.Text.ToString();
string PassWord = txtPassWord.Text.ToString();
PassWord = FormsAuthentication.HashPasswordForStoringInConfigFile(PassWord, "md5").ToLower().Substring(8, 16);
SqlParameter[] par = new SqlParameter[3];
par[0] = new SqlParameter("@username", SqlDbType.VarChar, 50);
par[0].Value = UserName;
par[1] = new SqlParameter("@password",SqlDbType.VarChar,50);
par[1].Value = PassWord;
par[2] = new SqlParameter("@userreturn", SqlDbType.Int, 4) ;
par[2].Direction = ParameterDirection.Output;
SqlDataReader sdr = SqlHelper.ExecuteReader(SqlHelper.sqlstring, CommandType.StoredProcedure, "User_Login",par);
int fhz = Convert.ToInt32(par[2].Value);
Label1.Text =fhz.ToString(); //这里作一下判断就好了
存储过程如下:
Create PROCEDURE User_Login
@username varchar(50),
@password varchar(50),
@userreturn BIT OUTPUT
AS
DECLARE @strPwd NVARCHAR(20)
select @strPwd=***_pass_word from fs_mf_*** where ***_name=@username
IF @password=@strPwd
SET @userreturn=1
ELSE
SET @userreturn=0
GO