管理员专属页面?

时间:2018-01-15 16:30:07

标签: c# mysql visual-studio login-control

我目前正在制作一个Windows窗体登录系统,我已经找到了如何设置一个普通人,每个人都可以看到主页面系统但是对于管理员我想要它打开一个新窗体(form3) )将包含客户订单。 我需要它从登录按钮打开。点击就像form2打开,显示广义用户的商店页面。我的表中没有用于用户角色的列。 我试过if else语句并遇到bools的问题而不是字符串等。

    using System;
    using System.Data;
    using System.Windows.Forms;
    using MySql.Data;
    using MySql.Data.MySqlClient;

    namespace Aliena_Store
    {


public partial class Form1 : Form
{
    //string ConnectionState = "";
    public Form1()
    {
        InitializeComponent();

    }

    MySqlConnection connection = new MySqlConnection("server=localhost;user=root;database=Aliena_Store;port=3306;password=Blackie");
    MySqlDataAdapter adapter;

    DataTable table = new DataTable();

    private void UsernameLogin_TextChanged(object sender, EventArgs e)
    {

    }

    private void PasswordLogin_TextChanged(object sender, EventArgs e)
    {

    }

    private void LoginButton_Click(object sender, EventArgs e)
    {
        adapter = new MySqlDataAdapter("SELECT `username`, `password` FROM `User_Details` WHERE `username` = '" + UsernameLogin.Text + "' AND `password` = '" + PasswordLogin.Text + "'", connection);

        adapter.Fill(table);
        var usernameSaved = UsernameLogin.Text;
        var passwordSaved = PasswordLogin.Text;
        Panel panel1 = new Panel();


        if (table.Rows.Count <= 0)
        {

         panel1.Height = 0;

         var result = MessageBox.Show("Username/Password Are Invalid or does not exist. Please sign up or retry your details");

        }

        else
        {
            panel1.Height = 0;
            this.Hide();
            if (table.Rows.Count >= 0)
            {

                Form nextForm;
                var result = MessageBox.Show("Login successful...Now logging in");
                this.Hide();
                object user = UsernameLogin.Text;
                object password = PasswordLogin.Text;
                if (user = "root" & password = "Pa$$w0rd")
                {
                    nextForm = new Form3();
                }
                else
                {
                    nextForm = new Form2();
                }
                nextForm.ShowDialog();
            }

            //Form2 f2 = new Form2();
            //f2.ShowDialog();

            //if login is successful needs to lead to another screen - if matches my account standard store screen or make root account just for the admin page
        }

        table.Clear();
    }


    private void EmailSignUp_TextChanged(object sender, EventArgs e)
    {

    }

    private void UsernameSignUp_TextChanged(object sender, EventArgs e)
    {

    }

    private void PasswordSignUp_TextChanged(object sender, EventArgs e)
    {

    }

    private void SignUpButton_Click(object sender, EventArgs e)
    {
        //connection.Open();
        string Query = "insert into User_Details (Email,Username,Password) values('" + this.EmailSignUp.Text + "', '" + this.UsernameSignUp.Text + "','" + this.PasswordSignUp.Text + "');";
        //string insertQuery = "INSERT INTO User_Details(Email,Username,Password)VALUES('" + EmailSignUp.Text + "','" + UsernameSignUp.Text + "'," + PasswordSignUp.Text + ")";
        MySqlCommand command = new MySqlCommand(Query,connection);

        try
        {
            if (command.ExecuteNonQuery() == 1)
            {
                MessageBox.Show("Data Inserted");
                connection.Close();
            }
            else
            {
                MessageBox.Show("Data Not Inserted");
            }
        }
        catch (Exception ex)
        {
            MessageBox.Show(ex.Message);
            connection.Close();
        }

    }

}

}

1 个答案:

答案 0 :(得分:0)

有几件事。

您的应用程序中需要一个存储用户属性的User对象。此对象可以具有IsAdmin属性,稍后您可以在代码中使用该属性。

或者,如果您不想创建和维护User对象,则再次调用数据库以查看该用户是否为admin,并将结果存储在您的方法的本地。

然后根据用户是否为管理员,实例化Form3而不是Form2

Form nextForm;
var result = MessageBox.Show("Login successful...Now logging in");
this.Hide();
if (user.IsAdmin) {
    nextForm = new Form3();
} else {
    nextForm = new Form2();
}
nextForm.ShowDialog();

PS:我希望您不要像现在这样在数据库中以纯文本格式存储密码。