我正在使用表单身份验证cookie存储用户详细信息。
FormsAuthenticationTicket authTicket = new FormsAuthenticationTicket(1, userName,DateTime.Now,DateTime.Now.AddMinutes(Timeout)false};
string encryptedTicket = FormsAuthentication.Encrypt(authTicket);
HttpCookie authCookie = new HttpCookie(
FormsAuthentication.FormsCookieName,encryptedTicket);
HttpContext.Current.Response.Cookies.Add(authCookie);
如何取回添加的Cookie和用户详细信息(authTicket)?
答案 0 :(得分:12)
您可以使用与以下内容类似的代码检索FormsAuthenticationTicket:
// Retrieves the cookie that contains your custom FormsAuthenticationTicket.
HttpCookie authCookie = HttpContext.Current.Request.Cookies[FormsAuthentication.FormsCookieName];
// Decrypts the FormsAuthenticationTicket that is held in the cookie's .Value property.
FormsAuthenticationTicket authTicket = FormsAuthentication.Decrypt(authCookie.Value);
// The "authTicket" variable now contains your original, custom FormsAuthenticationTicket,
// complete with User-specific custom data. You can then check that the FormsAuthenticationTicket's
// .Name property is for the correct user, and perform the relevant functions with the ticket.
// Here, we simply write the user-specific data to the Http Response stream.
if (authTicket.Name == txtUserName.Text)
{
Response.Write(authTicket.UserData);
}
上面的代码引用了txtUserName.Text之类的内容,所以这里有一个完整的.ASPX页面,您可以将其粘贴到一个空的ASP.NET webform中以查看它是如何工作的:
<%@ Page Language="C#" %>
<%@ Import Namespace="System.Web.Security" %>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<script runat="server">
protected void Page_Load(object sender, EventArgs e)
{
double Timeout = 15.00;
if (!IsPostBack)
{
FormsAuthenticationTicket authTicket = new FormsAuthenticationTicket(1,txtUserName.Text,
DateTime.Now,DateTime.Now.AddMinutes(Timeout), false, "This is my secret user-specific data");
string encryptedTicket = FormsAuthentication.Encrypt(authTicket);
HttpCookie authCookie = new HttpCookie(FormsAuthentication.FormsCookieName,encryptedTicket);
HttpContext.Current.Response.Cookies.Add(authCookie);
}
else
{
// Retrieves the cookie that contains your custom FormsAuthenticationTicket.
HttpCookie authCookie = HttpContext.Current.Request.Cookies[FormsAuthentication.FormsCookieName];
// Decrypts the FormsAuthenticationTicket that is held in the cookie's .Value property.
FormsAuthenticationTicket authTicket = FormsAuthentication.Decrypt(authCookie.Value);
// The "authTicket" variable now contains your original, custom FormsAuthenticationTicket,
// complete with User-specific custom data. You can then check that the FormsAuthenticationTicket's
// .Name property is for the correct user, and perform the relevant functions with the ticket.
// Here, we simply write the user-specific data to the Http Response stream.
if (authTicket.Name == txtUserName.Text)
{
Response.Write(authTicket.UserData);
}
}
}
</script>
<html xmlns="http://www.w3.org/1999/xhtml" >
<head>
<title>Forms Authentication Login</title>
</head>
<body>
<form id="form1" runat="server">
<div>
<table>
<tr>
<td>
UserName:
</td>
<td>
<asp:TextBox ID="txtUserName" runat="server"></asp:TextBox>
</td>
</tr>
<tr>
<td>
Password:
</td>
<td>
<asp:TextBox ID="txtPassword" runat="server"></asp:TextBox>
</td>
</tr>
<tr>
<td>
<asp:Button ID="Button1" runat="server" Text="Login" />
</td>
</tr>
</table>
</div>
</form>
</body>
</html>