Membership is a self-standing feature in ASP.NET for authentication; it can be integrated with ASP.NET role management to provide authorization services for your site. Membership can also be integrated with user profile properties to provide application-specific customization that can be tailored to individual users.
In this article I will tell you how to use these properties. To use these properties follow these steps:-
Configure database
Create a new database.
Run aspnet_regsql.exe
(You can find aspnet_regsql.exe in C:\Windows\Microsoft.NET\Framework\v4.0.30319)
After running aspnet_regsql.exe a window appears like this
Click on next->choose Configure SQL Server for Application services-> click next
A confirmation screen appears with setting summery, click next to confirm
After clicking on next a screen is appears like this
Click on finish.
Now your database is configured to use these properties.
Now create a new website from File->New->Website
Select ASP.NET Empty Website
Click on ok.
Create three folders(Account,Product,User) in your project
Add Web.sitemap file to setting menu items
Code of Web.sitemap
<?xml version="1.0" encoding="utf-8" ?> <siteMap xmlns="http://schemas.microsoft.com/AspNet/SiteMap-File-1.0"> <siteMapNode roles="*"> <siteMapNode url="Home.aspx" title="Home" description="Home" /> <!--to allow only adminstrators--> <siteMapNode title="User" description="" roles="Administrator" > <siteMapNode url="~/User/Create.aspx" title="Create User" description="Create User" /> <siteMapNode url="~/User/ViewAll.aspx" title="View All" description="View All" /> </siteMapNode> <!--to allow all users--> <siteMapNode description="Product" title="Product" roles="*"> <siteMapNode url="~/Product/Create.aspx" title="Create" description="Create New Product"/> <siteMapNode url="~/Product/Index.aspx" description="View All" title="View All"/> </siteMapNode> </siteMapNode> </siteMap> |
Add a master page site.master, user interface of master page
Code of site.master
<%@ Master Language="C#" AutoEventWireup="true" CodeFile="Site.master.cs" Inherits="Site" %> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head runat="server"> <title></title> <asp:ContentPlaceHolder ID="head" runat="server"> </asp:ContentPlaceHolder> </head> <body> <form id="form1" runat="server"> <div> <div style=" background-color:#E0E0E0; height:80px;" > <span style="font-family:Calibri;font-size:large; font-weight:bold;color: Blue;margin-right:35%"> <asp:Label ID="lblHeaderText" runat="server" Text="" Height=""></asp:Label></span> <span style="margin-left:75%; width:15%;font-family:Calibri;font-size:large;"> <asp:LoginView ID="HeadLoginView" runat="server" EnableViewState="false"> <AnonymousTemplate> [ <a href="~/Account/Login.aspx" id="HeadLoginStatus" runat="server">Log In</a> ] </AnonymousTemplate> <LoggedInTemplate> Welcome <span> <asp:LoginName ID="HeadLoginName" runat="server" /> </span>! [ <asp:LoginStatus ID="HeadLoginStatus" runat="server" LogoutAction="Redirect" LogoutText="Log Out" LogoutPageUrl="~/Account/Login.aspx" /> ] </LoggedInTemplate> </asp:LoginView> </span> </div> <asp:Menu ID="Menu1" runat="server" DataSourceID="siteMapSource" BackColor="#B5C7DE" DynamicHorizontalOffset="2" Font-Names="Verdana" Font-Size="Small" ForeColor="#284E98" Orientation="Horizontal" StaticSubMenuIndent="10px" Font-Bold="True" Font-Overline="False" Font-Strikeout="False" Height="30px" Width="40%"> <DynamicHoverStyle BackColor="#284E98" ForeColor="White" /> <DynamicMenuItemStyle HorizontalPadding="5px" VerticalPadding="2px" /> <DynamicMenuStyle BackColor="#B5C7DE" /> <DynamicSelectedStyle BackColor="#507CD1" /> <StaticHoverStyle BackColor="#284E98" ForeColor="White" /> <StaticMenuItemStyle HorizontalPadding="5px" VerticalPadding="2px" /> <StaticSelectedStyle BackColor="#507CD1" /> </asp:Menu> <asp:SiteMapDataSource runat="server" ShowStartingNode="false" ID="siteMapSource" /> <asp:ContentPlaceHolder ID="ContentPlaceHolder1" runat="server"> </asp:ContentPlaceHolder> </div> </form> </body> </html> |
Code of site.master.cs
using System; using System.Web; public partial class Site : System.Web.UI.MasterPage { protected void Page_Load(object sender, EventArgs e) { if (HttpContext.Current.User.IsInRole("Administrator")) { //change header when Adminstrator login lblHeaderText.Text = "User Registration And Product Entry"; } else { //change header when User login lblHeaderText.Text = "Product Entry"; } } } |
Add a page Login.aspx in Account folder, which User Interface is like this
Code of Login.aspx
<%@ Page Language="C#" AutoEventWireup="true" CodeFile="Login.aspx.cs" Inherits="Login" %> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head runat="server"> <title>Login</title> </head> <body> <form id="form1" runat="server"> <center> <div style="margin-top:220px;"> <asp:Login ID="LoginCtrl" runat="server" BackColor="#F7F6F3" BorderColor="#E6E2D8" BorderPadding="4" BorderStyle="Solid" BorderWidth="1px" Font-Names="Verdana" Font-Size="0.8em" ForeColor="#333333" Height="124px" Width="276px" > <InstructionTextStyle Font-Italic="True" ForeColor="Black" /> <LoginButtonStyle BackColor="#FFFBFF" BorderColor="#CCCCCC" BorderStyle="Solid" BorderWidth="1px" Font-Names="calibari" Font-Size="1.0em" ForeColor="#284775" /> <TextBoxStyle Font-Size="1.0em" /> <TitleTextStyle BackColor="#5D7B9D" Font-Bold="True" Font-Size="0.9em" ForeColor="White" /> </asp:Login> </div> </center> </form> </body> </html> |
Code of Login.cs
using System; using System.Collections.Generic; using System.Linq; using System.Web; using System.Web.UI; using System.Web.UI.WebControls; using System.Web.Security; public partial class Login : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { } } |
Add four pages(Create.aspx,Edit.aspx,Index.aspx,Delete.aspx) in product folder.These pages are visible to both user and administrators.
User Interface of Create.aspx
Code of Create.aspx
<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true" CodeFile="Create.aspx.cs" Inherits="AddNewProduct" %> <asp:Content ID="Content1" ContentPlaceHolderID="head" runat="Server"> <link href="../css/StyleSheet.css" rel="stylesheet" type="text/css" /> </asp:Content> <asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" runat="Server"> <div style="margin-top: 5%; margin-left: 20%; margin-right: 20%;"> <fieldset style="border-color: Black;"> <legend style="left: 0px; font-family: Calibri;">Add New Product</legend> <table width="100%" cellpadding="5%" style="margin-left: 15%; margin-right: 20%;"> <tr> <td> Name </td> <td> <asp:TextBox ID="txtName" runat="server" Style="width: 200px; outline: none; border: 1px solid black;" MaxLength="50"></asp:TextBox> <asp:RegularExpressionValidator ID="RegularExpressionValidator1" runat="server" ControlToValidate="txtName" ErrorMessage="*" ToolTip="Alphabets Only!" ValidationExpression="^[a-zA-Z]+$"></asp:RegularExpressionValidator> <asp:RequiredFieldValidator ID="RequiredFieldValidator1" runat="server" ControlToValidate="txtName" ErrorMessage="*" ToolTip="Name can't Blank!"></asp:RequiredFieldValidator> </td> </tr> <tr> <td> Description: </td> <td> <asp:TextBox ID="txtDesc" runat="server" Style="width: 200px; outline: none; border: 1px solid black;" MaxLength="100" TextMode="MultiLine"></asp:TextBox> </td> </tr> <tr> <td colspan="2"> <asp:Button ID="btnCreate" runat="server" Text="Save" OnClick="btnCreate_Click" Style="border: 1px solid black; font-family: Verdana; margin-left: 25%; margin-top: 10px;" /> </td> </tr> <tr> <td colspan="2" style="text-align: center"> <asp:Label ID="lblMsg" runat="server"></asp:Label> </td> </tr> </table> </fieldset> </div> </asp:Content> |
Code of Create.cs
using System; public partial class AddNewProduct : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { } protected void btnCreate_Click(object sender, EventArgs e) { ProductCRUD crudClass = new ProductCRUD(); bool res = crudClass.CreateProduct(txtName.Text, txtDesc.Text); lblMsg.Text = res ? "Record saved!" : "Unable to save record!"; txtName.Text = string.Empty; txtDesc.Text = string.Empty; } } |
User interface for Edit.aspx
Code of Edit.aspx
<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true" CodeFile="Edit.aspx.cs" Inherits="Product_Edit" %> <asp:Content ID="Content1" ContentPlaceHolderID="head" runat="Server"> <script language="javascript" type="text/javascript"> function SetButtonStatus(sender) { var name = document.getElementById('<%=txtName.ClientID %>'); var desc = document.getElementById('<%=txtDesc.ClientID %>'); if ((sender.value.length >= 1 && name.defaultValue != name.value) || (sender.value.length >= 1 && desc.defaultValue != desc.value)) document.getElementById('<%=btnSave.ClientID %>').disabled = false; else document.getElementById('<%=btnSave.ClientID %>').disabled = true; } </script> </asp:Content> <asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" runat="Server"> <div style="margin-top: 5%; margin-left: 20%; margin-right: 20%;"> <fieldset style="border-color: Black;"> <legend style="left: 0px; font-family: Calibri;">Add New Product</legend> <table width="100%" cellpadding="5%" style="margin-left: 15%; margin-right: 20%;"> <tr> <td> Name </td> <td> <input id="txtName" type="text" runat="server" onkeyup="SetButtonStatus(this)" style="width: 200px; outline: none; border: 1px solid black;" maxlength="50" /> <asp:RegularExpressionValidator ID="RegularExpressionValidator1" runat="server" ControlToValidate="txtName" ErrorMessage="*" ToolTip="Alphabets Only!" ValidationExpression="^[a-zA-Z]+$"></asp:RegularExpressionValidator> <asp:RequiredFieldValidator ID="RequiredFieldValidator1" runat="server" ControlToValidate="txtName" ErrorMessage="*" ToolTip="Name can't Blank!"></asp:RequiredFieldValidator> </td> </tr> <tr> <td> Description: </td> <td> <textarea id="txtDesc" cols="5" rows="2" runat="server" style="width: 200px; outline: none; border: 1px solid black;" onkeyup="SetButtonStatus(this)" maxlength="50"></textarea> </td> </tr> <tr> <td colspan="2"> <asp:Button ID="btnSave" runat="server" Text="Save" OnClick="btnSave_Click" Enabled="false" Style="border: 1px solid black; font-family: Verdana; margin-left: 25%; margin-top: 10px;" /> </td> </tr> <tr> <td colspan="2" style="text-align: center"> <asp:Label ID="lblMsg" runat="server"></asp:Label> </td> </tr> </table> </fieldset> </div> </asp:Content> |
Code of Edit.cs
using System; using System.Web.UI; public partial class Product_Edit : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { if (!Page.IsPostBack) { try { ProductCRUD crudCls = new ProductCRUD();//create object of global class Product product = null; if (crudCls.Search(Request.QueryString["prodId"].ToString(), out product))//search product { //setting textboxes value txtName.Value = product.Name; txtDesc.Value = product.Description; crudCls.dr.Close(); } } catch (Exception) { Response.Redirect("~/Home.aspx"); } } } protected void btnSave_Click(object sender, EventArgs e) { try { ProductCRUD crudCls = new ProductCRUD(); if (crudCls.UpdateProduct(Request.QueryString["prodId"].ToString(), txtName.Value.Trim(), txtDesc.Value.Trim()))//Update Product { Response.Redirect("~/Product/Index.aspx?msg=Record Updated!"); } else { Response.Redirect("~/Product/Index.aspx?msg=Record Not Updated!&lblColor=Red"); } } catch (Exception) { Response.Redirect("~/Product/Index.aspx?msg=Record Not Updated!&lblColor=Red"); } } } |
User Interface of Index.aspx
Code of Index.aspx
<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true" CodeFile="Index.aspx.cs" Inherits="Product_Index" %> <asp:Content ID="Content1" ContentPlaceHolderID="head" Runat="Server"> </asp:Content> <asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" Runat="Server"> <div style="margin-top:5%;margin-left:20%;margin-right:20%;"> <fieldset style="border-color:Black;"> <legend style="font-family:Calibri" >Product List</legend> <center> <div><asp:Label ID="lblMsg" Text="" runat="server" ForeColor="Green"></asp:Label></div> <div> <asp:GridView ID="GridViewProduct" runat="server" CellPadding="4" ForeColor="#333333" GridLines="None" Width="100%" AutoGenerateColumns="False" DataKeyNames="ProductId" DataSourceID="ProductSqlDataSource"> <AlternatingRowStyle BackColor="White" ForeColor="#284775" /> <Columns> <asp:BoundField DataField="Name" HeaderText="Name" SortExpression="Name" /> <asp:BoundField DataField="Description" HeaderText="Description" SortExpression="Description" /> <asp:TemplateField HeaderText="Action"> <ItemTemplate> <asp:HyperLink ID="HlEdit" runat="server" NavigateUrl='<%#"~/Product/Edit.aspx?prodId="+Eval("ProductId") %>'>Edit</asp:HyperLink> |<asp:HyperLink ID="HLDelete" runat="server" NavigateUrl='<%#"~/Product/Delete.aspx?prodId="+Eval("ProductId") %>'>Delete</asp:HyperLink> </ItemTemplate> </asp:TemplateField> </Columns> <EditRowStyle BackColor="#999999" /> <FooterStyle BackColor="#5D7B9D" Font-Bold="True" ForeColor="White" /> <HeaderStyle BackColor="#5D7B9D" Font-Bold="True" ForeColor="White" /> <PagerStyle BackColor="#284775" ForeColor="White" HorizontalAlign="Center" /> <RowStyle BackColor="#F7F6F3" ForeColor="#333333" /> <SelectedRowStyle BackColor="#E2DED6" Font-Bold="True" ForeColor="#333333" /> <SortedAscendingCellStyle BackColor="#E9E7E2" /> <SortedAscendingHeaderStyle BackColor="#506C8C" /> <SortedDescendingCellStyle BackColor="#FFFDF8" /> <SortedDescendingHeaderStyle BackColor="#6F8DAE" /> </asp:GridView> <asp:SqlDataSource ID="ProductSqlDataSource" runat="server" ConnectionString="<%$ ConnectionStrings:MRU_ProductConnectionString %>" SelectCommand="SELECT * FROM [Product]"></asp:SqlDataSource> </div> </center> </fieldset> </div> </asp:Content> |
Code of Index.cs
using System; using System.Drawing; public partial class Product_Index : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { try { lblMsg.Text = Request.QueryString["msg"].ToString(); lblMsg.ForeColor = Color.FromName(Request.QueryString["lblColor"].ToString()); } catch { } } } |
User Interface of Delete.aspx
Code of Delete.aspx
<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true" CodeFile="Delete.aspx.cs" Inherits="Product_DeleteProduct" %> <asp:Content ID="Content1" ContentPlaceHolderID="head" runat="Server"> </asp:Content> <asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" runat="Server"> <div style="margin-top:5%;margin-left:20%;margin-right:20%;"> <fieldset style="border-color:Black" > <legend>Confirmation</legend> <center>Are you sure to delete <asp:Literal ID="ltrlProName" runat="server"></asp:Literal> <asp:Button ID="btnYes" runat="server" Text="Yes" onclick="btnYes_Click" style="border: 1px solid black; font-family: Verdana;" /> <asp:Button ID="btnNo" runat="server" Text="No" onclick="btnNo_Click" style="border: 1px solid black; font-family: Verdana; " /> </center> </fieldset> </div> </asp:Content> |
Code of Delete.cs
using System; public partial class Product_DeleteProduct : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { try { ProductCRUD crudCls = new ProductCRUD();//create global class object Product product = null; if (crudCls.Search(Request.QueryString["prodId"].ToString(), out product))//search product { ltrlProName.Text = product.Name + "?"; } } catch (Exception ee) { Response.Write(ee.Message); } } protected void btnYes_Click(object sender, EventArgs e) { try { ProductCRUD crudCls = new ProductCRUD(); if (crudCls.DeleteProduct(Request.QueryString["prodId"].ToString())) { Response.Redirect("~/Product/Index.aspx?msg=Product Deleted!&lblColor=Green"); } else { Response.Redirect("~/Product/Index.aspx?msg=Error!Product Not Deleted.&lblColor=Red"); } } catch (Exception ee) { Response.Write(ee.Message); } } protected void btnNo_Click(object sender, EventArgs e) { Response.Redirect("~/Product/Index.aspx"); } } |
Make four pages(Create.aspx,Delete.aspx,Edit.aspx,ViewAll.aspx) in user folder.These pages are only visible to Administrators.
User Interface of Create.aspx
Code of Create.aspx
<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true" CodeFile="Create.aspx.cs" Inherits="Account_Create" %> <asp:Content ID="Content1" ContentPlaceHolderID="head" Runat="Server"> </asp:Content> <asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" Runat="Server"> <div style="margin-top:5%;margin-left:20%;margin-right:20%;"> <fieldset style="border-color:Black;" > <legend style="font-family:Calibri">Create New User</legend> <table width="100%" cellpadding="5%" style="margin-left:15%; margin-right:20%;" > <tr > <td > Name</td> <td> <asp:TextBox ID="txtName" runat="server" Style="width: 200px; outline: none; border: 1px solid black;" MaxLength="50"></asp:TextBox> <asp:RegularExpressionValidator ID="REVName" runat="server" ControlToValidate="txtName" ErrorMessage="*" ToolTip="Alphabets Only!" ValidationExpression="^[a-zA-Z]+$"></asp:RegularExpressionValidator> <asp:RequiredFieldValidator ID="RFVName" runat="server" ControlToValidate="txtName" ErrorMessage="*" ToolTip="Name can't Blank!"></asp:RequiredFieldValidator></td> </tr> <tr > <td>Password:</td> <td><asp:TextBox ID="txtPass" runat="server" Style="width: 200px; outline: none; border: 1px solid black;" MaxLength="15" TextMode="Password"></asp:TextBox> <asp:RequiredFieldValidator ID="RequiredFieldValidator1" runat="server" ControlToValidate="txtPass" ErrorMessage="*" ToolTip="Password can't Blank!"></asp:RequiredFieldValidator> </td> </tr> <tr > <td>Confirm Password:</td> <td><asp:TextBox ID="txtCnfPass" runat="server" Style="width: 200px; outline: none; border: 1px solid black;" TextMode="Password" MaxLength="15"></asp:TextBox> <asp:RequiredFieldValidator ID="RequiredFieldValidator2" runat="server" ControlToValidate="txtCnfPass" ErrorMessage="*" ToolTip="Confirm Password can't Blank!"></asp:RequiredFieldValidator> <asp:CompareValidator ID="CompareValidator1" runat="server" ControlToCompare="txtCnfPass" ControlToValidate="txtPass" ErrorMessage="*" ToolTip="Both passwords are not same!"></asp:CompareValidator> </td> </tr> <tr > <td>Email:</td> <td><asp:TextBox ID="txtEmail" runat="server" Style="width: 200px; outline: none; border: 1px solid black;" MaxLength="50"></asp:TextBox> <asp:RequiredFieldValidator ID="RequiredFieldValidator3" runat="server" ControlToValidate="txtEmail" ErrorMessage="*" ToolTip="Email can't Blank!"></asp:RequiredFieldValidator> <asp:RegularExpressionValidator ID="REVEmail" runat="server" ControlToValidate="txtEmail" ErrorMessage="*" ValidationExpression="\w+([-+.']\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*"></asp:RegularExpressionValidator> </td> </tr> <tr > <td>User Type</td> <td> <asp:RadioButton ID="RBAdmin" runat="server" Checked="True" GroupName="RBUserType" Text="Administrator" /> <asp:RadioButton ID="RBUser" runat="server" GroupName="RBUserType" Text="User" /> </td> </tr> <tr> <td colspan="2"><asp:Button ID="btnSave" runat="server" Text="Save" onclick="btnSave_Click" style="border: 1px solid black; font-family: Verdana; margin-left: 25%; margin-top: 10px;"/></td> </tr> <tr> <td colspan="2" style="text-align: center"> <asp:Label ID="lblMsg" runat="server" ForeColor="Green"></asp:Label> </td> </tr> </table> </fieldset> </div> </asp:Content> |
Code of Create.cs
using System; using System.Web.Security; using System.Drawing; public partial class Account_Create : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { } protected void btnSave_Click(object sender, EventArgs e) { try { if (RBAdmin.Checked == true) { //create a new user Membership.CreateUser(txtName.Text.Trim(), txtPass.Text, txtEmail.Text.Trim()); //add role for new user Roles.AddUserToRole(txtName.Text.Trim(), "Administrator"); lblMsg.Text = "Administrator Created Sucessfully!"; txtEmail.Text = string.Empty; txtName.Text = string.Empty; txtPass.Text = string.Empty; txtCnfPass.Text = string.Empty; } else if (RBUser.Checked == true) { //create a new user Membership.CreateUser(txtName.Text.Trim(), txtPass.Text, txtEmail.Text.Trim()); //add role for new user Roles.AddUserToRole(txtName.Text.Trim(), "User"); lblMsg.Text = "User Created Sucessfully!"; txtEmail.Text = string.Empty; txtName.Text = string.Empty; txtPass.Text = string.Empty; txtCnfPass.Text = string.Empty; } } catch(Exception) { lblMsg.ForeColor = Color.Red; lblMsg.Text = "Error!Unable to Save Records!"; } } } |
User interface of Delete.aspx
Code of Delete.aspx
<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true" CodeFile="Delete.aspx.cs" Inherits="User_Delete" %> <asp:Content ID="Content1" ContentPlaceHolderID="head" Runat="Server"> </asp:Content> <asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" Runat="Server"> <div style="margin-top:5%;margin-left:20%;margin-right:20%;"> <fieldset style="border-color:Black" > <legend>Confirmation</legend> <center>Are you sure to delete <asp:Literal ID="ltrlUserName" runat="server"></asp:Literal> <asp:Button ID="btnYes" runat="server" Text="Yes" onclick="btnYes_Click" style="border: 1px solid black; font-family: Verdana;" /> <asp:Button ID="btnNo" runat="server" Text="No" onclick="btnNo_Click" style="border: 1px solid black; font-family: Verdana; " /> </center> </fieldset> </div> </asp:Content> |
Code of Delete.cs
using System; using System.Web.Security; public partial class User_Delete : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { try { ltrlUserName.Text = Request.QueryString["name"].ToString() + "?"; } catch { Response.Redirect("~/User/ViewAll.aspx"); } } protected void btnYes_Click(object sender, EventArgs e) { try { //get the role of current user string[] roles = Roles.GetRolesForUser(User.Identity.Name); if (roles[0] == "Administrator") { Response.Redirect("~/User/ViewAll.aspx?msg=You Can't Delete Adminstrator!"); } else { //delete user by user name Membership.DeleteUser(Request.QueryString["name"].ToString(), true); Response.Redirect("~/User/ViewAll.aspx?msg=Record Deleted Sucessfully!&lblColor=Green"); } } catch (Exception ee) { Response.Write(ee.Message); } } protected void btnNo_Click(object sender, EventArgs e) { Response.Redirect("~/User/ViewAll.aspx"); } } |
User interface of Edit.aspx
Code of Edit.aspx
<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true" CodeFile="Edit.aspx.cs" Inherits="User_Edit" %> <asp:Content ID="Content1" ContentPlaceHolderID="head" runat="Server"> <script language="javascript" type="text/javascript"> function SetButtonStatus(sender, target) { var email = document.getElementById('<%=txtEmail.ClientID %>'); if ((sender.value.length >= 1 && sender.defaultValue != sender.value)) document.getElementById('<%=btnSave.ClientID %>').disabled = false; else document.getElementById('<%=btnSave.ClientID %>').disabled = true; } </script> </asp:Content> <asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" runat="Server"> <div style="margin-top: 5%; margin-left: 20%; margin-right: 20%;"> <fieldset style="border-color: Black;"> <legend style="font-family: Calibri">Edit User Details</legend> <table width="100%" cellpadding="5%" style="margin-left: 15%; margin-right: 20%;"> <tr> <td> Name </td> <td> <asp:TextBox ID="txtName" runat="server" Style="width: 200px; outline: none; border: 1px solid black;" MaxLength="50" Enabled="False"></asp:TextBox> <asp:RegularExpressionValidator ID="REVName" runat="server" ControlToValidate="txtName" ErrorMessage="*" ToolTip="Alphabets Only!" ValidationExpression="^[a-zA-Z]+$"></asp:RegularExpressionValidator> <asp:RequiredFieldValidator ID="RFVName" runat="server" ControlToValidate="txtName" ErrorMessage="*" ToolTip="Name can't Blank!"></asp:RequiredFieldValidator> </td> </tr> <tr> <td> Email: </td> <td> <input id="txtEmail" type="text" runat="server" style="width: 200px; outline: none; border: 1px solid black;" onkeyup="SetButtonStatus(this,'btnSave')" maxlength="50" /> <asp:RequiredFieldValidator ID="RequiredFieldValidator3" runat="server" ControlToValidate="txtEmail" ErrorMessage="*" ToolTip="Email can't Blank!"></asp:RequiredFieldValidator> <asp:RegularExpressionValidator ID="REVEmail" runat="server" ControlToValidate="txtEmail" ErrorMessage="*" ValidationExpression="\w+([-+.']\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*" ToolTip="Invalid Email!"></asp:RegularExpressionValidator> </td> </tr> <tr> <td colspan="2"> <asp:Button ID="btnSave" runat="server" Text="Save" OnClick="btnSave_Click" Enabled="False" Style="border: 1px solid black; font-family: Verdana; margin-left: 25%; margin-top: 10px;" /> </td> </tr> <tr> <td colspan="2" style="text-align: center"> <asp:Label ID="lblMsg" runat="server" ForeColor="Green"></asp:Label> </td> </tr> </table> </fieldset> </div> </asp:Content> |
Code of Edit.cs
using System; using System.Web.Security; public partial class User_Edit : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { try { if (!IsPostBack) { MembershipUser user = Membership.GetUser(Request.QueryString["name"].ToString());//get user details //setting user details in textboxes txtName.Text = user.UserName; txtEmail.Value = user.Email; } } catch { Response.Redirect("~/User/ViewAll.aspx"); } } protected void btnSave_Click(object sender, EventArgs e) { string strEmail; strEmail = txtEmail.Value; try { MembershipUser user = Membership.GetUser(Request.QueryString["name"].ToString()); user.Email = strEmail; Membership.UpdateUser(user);//update user details Response.Redirect("~/User/ViewAll.aspx?msg=Record updated sucessfully!"); } catch { lblMsg.Text = "Error!Unable to update record!"; } } protected void txtEmail_TextChanged(object sender, EventArgs e) { btnSave.Enabled=true; } } |
User Interface of ViewAll.aspx
Code of ViewAll.aspx
<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true" CodeFile="ViewAll.aspx.cs" Inherits="User_Delete" %> <asp:Content ID="Content1" ContentPlaceHolderID="head" runat="Server"> </asp:Content> <asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" runat="Server"> <div style="margin-top: 5%; margin-left: 20%; margin-right: 20%;"> <fieldset style="border-color: Black;"> <legend style="font-family: Calibri">Users List</legend> <center> <asp:Label ID="lblMsg" Text="" runat="server" ForeColor="Green"></asp:Label> <asp:gridview id="gridview1" runat="server" autogeneratecolumns="false" Width="100%" cellpadding="4" datakeynames="userid" datasourceid="sqldatasource1" forecolor="#333333" gridlines="none"> <alternatingrowstyle backcolor="white" forecolor="#284775" /> <columns> <asp:boundfield datafield="username" headertext="username" sortexpression="username" /> <asp:boundfield datafield="email" headertext="email" sortexpression="email" /> <asp:boundfield datafield="createdate" headertext="createdate" sortexpression="createdate" /> <asp:templatefield headertext="action"> <itemtemplate> <asp:hyperlink id="hledit" runat="server" navigateurl='<%#"~/user/Edit.aspx?name="+Eval("username") %>' >Edit</asp:hyperlink> |<asp:hyperlink id="hldelete" runat="server" navigateurl='<%#"~/user/Delete.aspx?name="+Eval("username") %>'>Delete</asp:hyperlink> </itemtemplate> </asp:templatefield> </columns> <editrowstyle backcolor="#999999" /> <footerstyle backcolor="#5d7b9d" font-bold="true" forecolor="white" /> <headerstyle backcolor="#5d7b9d" font-bold="true" forecolor="white" /> <pagerstyle backcolor="#284775" forecolor="white" horizontalalign="center" /> <rowstyle backcolor="#f7f6f3" forecolor="#333333" /> <selectedrowstyle backcolor="#e2ded6" font-bold="true" forecolor="#333333" /> <sortedascendingcellstyle backcolor="#e9e7e2" /> <sortedascendingheaderstyle backcolor="#506c8c" /> <sorteddescendingcellstyle backcolor="#fffdf8" /> <sorteddescendingheaderstyle backcolor="#6f8dae" /> </asp:gridview> </center> </fieldset> <asp:SqlDataSource ID="SqlDataSource1" runat="server" ConnectionString="<%$ ConnectionStrings:MRU_ProductConnectionString %>" SelectCommand="SELECT [UserName], [Email], [CreateDate], [UserId] FROM [vw_aspnet_MembershipUsers]"> </asp:SqlDataSource> </div> </asp:Content> |
Code of ViewAll.cs
using System; using System.Drawing; public partial class User_Delete : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { try { lblMsg.Text = Request.QueryString["msg"].ToString(); lblMsg.ForeColor = Color.FromName(Request.QueryString["lblColor"].ToString()); } catch { } } } |
Now make a home page, which is outside of these folders.
User Interface of Home.aspx
(Home.aspx is accessible to all users and administrators)
Code of Home.aspx
<%@ Page Title="" Language="C#" MasterPageFile="~/Site.master" AutoEventWireup="true" CodeFile="Home.aspx.cs" Inherits="Home" %> <asp:Content ID="Content1" ContentPlaceHolderID="head" Runat="Server"> </asp:Content> <asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" Runat="Server"> <center><asp:Image ImageUrl="~/image/homepage.jpg" runat="server" Width="50%"/> </center> </asp:Content> |
Code of Home.aspx
using System; public partial class Home : System.Web.UI.Page { protected void Page_Load(object sender, EventArgs e) { } } |
Code of web.config
<?xml version="1.0"?> <configuration> <appSettings/> <connectionStrings> <add name="MRU_ProductConnectionString" connectionString="Data Source=(local);Initial Catalog=MRU_Product;User ID=sa;Password=abc" providerName="System.Data.SqlClient" /> </connectionStrings> <!--setting access to folders--> <location path="user"> <system.web> <authorization> <allow roles="Administrator"/> <deny users="*"/> </authorization> </system.web> </location> <location path="Product"> <system.web> <authorization> <allow roles="Administrator"/> <allow roles="User"/> <deny users="*"/> </authorization> </system.web> </location> <location path="Home.aspx"> <system.web> <authorization> <allow roles="Administrator"/> <allow roles="User"/> <deny users="*"/> </authorization> </system.web> </location> <system.web> <!--authentication setting--> <authentication mode="Forms"> <forms loginUrl="~/Account/Login.aspx" defaultUrl="~/Home.aspx" timeout="2880"/> </authentication> <membership> <providers> <clear /> <add name="AspNetSqlMembershipProvider" type="System.Web.Security.SqlMembershipProvider" connectionStringName="MRU_ProductConnectionString" applicationName="MRU_Product" enablePasswordRetrieval="false" enablePasswordReset="true" requiresQuestionAndAnswer="false" requiresUniqueEmail="false" maxInvalidPasswordAttempts="5" minRequiredPasswordLength="6" minRequiredNonalphanumericCharacters="0" passwordAttemptWindow="10" /> </providers> </membership> <profile> <providers> <clear/> <add name="AspNetSqlProfileProvider" type="System.Web.Profile.SqlProfileProvider" connectionStringName="MRU_ProductConnectionString" applicationName="MRU_Product"/> </providers> </profile> <!--sitemap setting--> <siteMap defaultProvider="XmlSiteMapProvider" enabled="true"> <providers> <add name="XmlSiteMapProvider" description="Default SiteMap provider." type="System.Web.XmlSiteMapProvider " siteMapFile="Web.sitemap" securityTrimmingEnabled="true" /> </providers> </siteMap> <!--to enable role--> <roleManager enabled="true" defaultProvider="sqlRoleManager"> <providers> <clear /> <add name="sqlRoleManager" type="System.Web.Security.SqlRoleProvider" connectionStringName="MRU_ProductConnectionString" applicationName="MRU_Product" /> </providers> </roleManager> <compilation debug="true" targetFramework="4.0"/> <pages controlRenderingCompatibilityVersion="3.5" clientIDMode="AutoID"/> </system.web> </configuration> |
Here all things are done.
Output screens:
Login.aspx
Home.aspx (after Administrator Login)
On Administrator login you can see that both user and product menus are visible.
Home.aspx (after User Login)
On User Login only product menu is visible.
No comments:
Post a Comment