MVC之ActionFilterAttribute

1、登录页面代码:

@{
    ViewBag.Title = "会员登录";
    Layout = "~/Views/Shared/_LayoutDialog.cshtml";
}

<div class="loginBox">
    <div class="loginHead" >
        会员登录
    </div>
    <form id="hgl-form" class="form-horizontal" action="@Url.Action("Login", "Home", new { area = string.Empty })" method="post">
        <div class="control-group">
            <label for="inputEmail">账户</label>
            <input type="text" name="account" id="inputEmail" class="validate[required]" />
        </div>
        <div class="control-group">
            <label for="inputPassword">密码</label>
            <input type="password" name="password" id="inputPassword" class="validate[required]" />
        </div>
        @*<div class="control-group" >
                    <label class="checkbox">
                        <input type="checkbox" name="rememberMe" checked>
                        记住我</label>
                </div>*@
        <div class="form-actions">
            <button type="submit" class="btn btn-block">登录</button>
        </div>
    </form>

</div>

@section scripts{
    <script type="text/javascript">
        $(function () {
            //表单提交
            hgl.sumbit(function () {
                location.href = '@Url.Action("Index", "SiteSet", new { area = "Setting" })';//登陆成功后跳转到的页面
            });
        })
    </script>
}

  2、登录controller代码:

        //会员登录
        [HttpGet]
        public ActionResult Login()
        {
            return View();
        }

        [HttpPost]
        public ActionResult Login(string account, string password)
        {
            var entity = AdminService.QueryDetailForAccount(account);
            if (entity == null)
                return JRFaild("all", "此账户不存在");

            if (entity.Password != password.ToMD5())
                return JRFaild("all", "账户密码输入错误,请重新输入");

            if (entity.Freezed == 1)
                return JRFaild("all", "此账户已被冻结,暂不能登录,请联系超级管理员");

            var result = AdminService.Login(account, password, entity);

            if (result)
            {
                Session["account"] = account;
                Session["guid"] = entity.Guid;
                Session["username"] = entity.Name;
                Session["password"] = password; return JRSuccess("登录成功"); } return JRFaild("all", "登录失败,用户名或密码错误或账户不存在"); }

  前面是登录模块的代码;下面主要介绍 ActionFilterAttribute过滤器的使用

1、在项目中新建个Filter文件夹,在文件夹里面添加该过滤器类,命名为:BasicAuthAttribute.cs;此类需要继承ActionFilterAttribute(关于ActionFilterAttribute大家可以按F12跳转到该类的详细介绍进行了解和使用);我在新建的BasicAuthAttribute.cs中使用了OnActionExecuting,该类代码如下:如下代码在使用的时候还需要添加引用:

using System.Web.Mvc;
using System.Web.Routing;
using System.Web.Security;
namespace Linkin.Manager.Filter
{
    public class BasicAuthAttribute : ActionFilterAttribute
    {
        public override void OnActionExecuting(ActionExecutingContext filterContext)
        {
            var account = filterContext.HttpContext.Session["account"];
            var password = filterContext.HttpContext.Session["password"];
            if (account == null || password == null) { //用户不登陆的时候跳转到登录页面 filterContext.Result = new RedirectToRouteResult(new RouteValueDictionary(new { controller = "Home", action = "Login", area = string.Empty })); } } } }

到此为止,过滤器已经写好了,具体的项可以直接F12到起定义进行查看,可以看出当用户不登陆的时候会跳转到登录页面

2、此时需要到配置文件里的登录配置是怎么配置的,打开web.config,找到节点<authentication mode="Forms"></authentication>查看配置,如果自己的登录页面跟web.config里面的配置一样就不需要修改了,不一致的最好修改一下

    <!--这里配置的是登录页面的权限配置-->
    <authentication mode="Forms">
      <forms loginUrl="~/Home/Login" timeout="2880"   />
    </authentication>

3、这样以后在controller里面就可以直接用该过滤器了,在要使用此项过滤器的controller里面直接加入下面的红色字体,此时这样还需要引入该文件的引用:using Linkin.Manager.Filter;(此引用要根据自己的项目的实际情况来添加)代码如下:

   [BasicAuthAttribute]
    public class AdminController : BasicController
    {
        [HttpGet]
        public ActionResult Index(string id, string key, int state = -1, int page = 1)
        {
            ViewBag.Id = id;
            ViewBag.Key = key;
            ViewBag.State = state;
            return View(AdminService.QueryPageList(id, key, state, page, 10));
        }
   }

上面的代码是将起放到了外面,也可以将起直接放到里面,如下:

public class AdminController : BasicController
    {
        [BasicAuthAttribute]
        [HttpGet]
        public ActionResult Index(string id, string key, int state = -1, int page = 1)
        {
            ViewBag.Id = id;
            ViewBag.Key = key;
            ViewBag.State = state;
            return View(AdminService.QueryPageList(id, key, state, page, 10));
        }
  }

4、经过以上的步骤就弄好了,此时运行网站,在不登陆的时候,直接在浏览器的地址栏输入http://localhost:2341/setting/admin,此时可以看到页面跳转到了登录页面

posted @ 2015-11-26 11:02  CoCoon_Li  阅读(436)  评论(0编辑  收藏  举报