ASP.NET&Spring.NET&NHibernate最佳实践(二十四)——第4章权限子系统(17)
修改Users.aspx
<
asp:Content
ID
="MiddleColumnContent"
ContentPlaceHolderID
="MiddleColumnZone"
runat
="server"
>
<
asp:Panel
ID
="Panel1"
runat
="server"
GroupingText
="用户列表"
>
<
br
/>
<
asp:GridView
ID
="GridView1"
runat
="server"
DataSourceID
="ObjectDataSource1"
DataKeyNames
="UserName"
AutoGenerateColumns
="False"
Width
="100%"
OnRowCommand
="GridView1_RowCommand"
>
<
Columns
>
<
asp:BoundField
HeaderText
="登录名"
DataField
="UserName"
ReadOnly
="true"
/>
<
asp:HyperLinkField
HeaderText
="电子邮件地址"
DataTextField
="Email"
DataNavigateUrlFormatString
="mailto:{0}"
DataNavigateUrlFields
="Email"
/>
<
asp:BoundField
HeaderText
="创建时间"
DataField
="CreationDate"
DataFormatString
="{0:MM/dd/yy h:mm tt}"
ReadOnly
="true"
/>
<
asp:BoundField
HeaderText
="活动时间"
DataField
="LastActivityDate"
DataFormatString
="{0:MM/dd/yy h:mm tt}"
ReadOnly
="true"
/>
<
asp:CheckBoxField
HeaderText
="审核"
DataField
="IsApproved"
HeaderStyle-HorizontalAlign
="Center"
ItemStyle-HorizontalAlign
="Center"
/>
<
asp:TemplateField
>
<
ItemTemplate
>
<
div
style
="width: 100%; text-align: right;"
>
<
asp:LinkButton
ID
="btnEdit"
CommandName
="Edit"
runat
="server"
>
编辑
</
asp:LinkButton
>
<
asp:LinkButton
ID
="btnDelete"
CommandName
="Delete"
runat
="server"
OnClientClick
="return confirm('您真的要删除吗?')"
>
删除
</
asp:LinkButton
>
</
div
>
</
ItemTemplate
>
<
EditItemTemplate
>
<
div
style
="width: 100%; text-align: right;"
>
<
asp:Button
ID
="btnUpdate"
runat
="server"
CommandName
="UpdateUser"
CommandArgument
="<%# Container.DataItemIndex %>"
Text
="更新"
/>
<
asp:Button
ID
="btnCancel"
runat
="server"
CommandName
="Cancel"
Text
="取消"
/>
</
div
>
</
EditItemTemplate
>
</
asp:TemplateField
>
</
Columns
>
</
asp:GridView
>
</
asp:Panel
>
<
hr
/>
<
asp:Panel
ID
="Panel2"
runat
="server"
GroupingText
="新增部用户"
>
<
br
/>
<
asp:CreateUserWizard
ID
="CreateUserWizard1"
runat
="server"
ContinueDestinationPageUrl
="~/Users.aspx"
DisableCreatedUser
="True"
EmailRegularExpression
=""
EmailRegularExpressionErrorMessage
=""
>
</
asp:CreateUserWizard
>
</
asp:Panel
>
<
asp:ObjectDataSource
ID
="ObjectDataSource1"
runat
="server"
TypeName
="System.Web.Security.Membership"
SelectMethod
="GetAllUsers"
DeleteMethod
="DeleteUser"
></
asp:ObjectDataSource
>
</
asp:Content
>
修改Users.aspx..cs
using
System;
using
System.Data;
using
System.Configuration;
using
System.Collections;
using
System.Web;
using
System.Web.Security;
using
System.Web.UI;
using
System.Web.UI.WebControls;
using
System.Web.UI.WebControls.WebParts;
using
System.Web.UI.HtmlControls;
public
partial
class
Users : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
}
protected void GridView1_RowCommand(object sender, GridViewCommandEventArgs e)
{
if (e.CommandName == "UpdateUser")
{
MembershipUser user = Membership.GetUser((string)GridView1.DataKeys[Convert.ToInt32(e.CommandArgument)].Value);
if (((CheckBox)GridView1.Rows[Convert.ToInt32(e.CommandArgument)].Cells[4].Controls[0]).Checked)
{
user.IsApproved = true;
}
else
{
user.IsApproved = false;
}
Membership.UpdateUser(user);
GridView1.EditIndex = -1;
return;
}
}
}
修改UserRole.aspx
<
asp:Content
ID
="MiddleColumnContent"
ContentPlaceHolderID
="MiddleColumnZone"
runat
="server"
>
<
asp:Panel
ID
="Panel1"
runat
="server"
GroupingText
="权限设置"
>
<
br
/>
选择用户
<
br
/>
<
asp:DropDownList
ID
="lstUsers"
runat
="server"
AutoPostBack
="true"
OnSelectedIndexChanged
="lstUsers_SelectedIndexChanged"
>
</
asp:DropDownList
>
<
br
/>
所有角色
<
br
/>
<
asp:CheckBoxList
ID
="chkRoles"
runat
="server"
>
</
asp:CheckBoxList
>
<
p
>
<
asp:Button
ID
="btnUpdate"
runat
="server"
Text
="更新"
OnClick
="btnUpdate_Click"
/>
</
p
>
</
asp:Panel
>
</
asp:Content
>
修改UserRole.aspx.cs
using
System;
using
System.Data;
using
System.Configuration;
using
System.Collections;
using
System.Web;
using
System.Web.Security;
using
System.Web.UI;
using
System.Web.UI.WebControls;
using
System.Web.UI.WebControls.WebParts;
using
System.Web.UI.HtmlControls;
public
partial
class
UserRole : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
if (!Page.IsPostBack)
{
BindUsers();
BindRoles();
}
}
private void BindUsers()
{
System.Web.Security.MembershipUserCollection users = System.Web.Security.Membership.GetAllUsers();
lstUsers.DataSource = users;
lstUsers.DataTextField = "UserName";
lstUsers.DataValueField = "UserName";
lstUsers.DataBind();
}
private void BindRoles()
{
chkRoles.Items.Clear();
string[] roles = System.Web.Security.Roles.GetAllRoles();
string[] userRoles = System.Web.Security.Roles.GetRolesForUser(lstUsers.SelectedValue);
foreach (string role in roles)
{
ListItem item = new ListItem();
item.Text = role;
item.Value = role;
if (Array.IndexOf(userRoles, role) > -1)
{
item.Selected = true;
}
chkRoles.Items.Add(item);
}
}
protected void lstUsers_SelectedIndexChanged(object sender, EventArgs e)
{
BindRoles();
}
protected void btnUpdate_Click(object sender, EventArgs e)
{
foreach (ListItem item in chkRoles.Items)
{
if (item.Selected)
{
System.Web.Security.Roles.AddUserToRole(lstUsers.SelectedValue, item.Value);
}
else
{
System.Web.Security.Roles.RemoveUserFromRole(lstUsers.SelectedValue, item.Value);
}
}
}
}
<
asp:Content
ID
="MiddleColumnContent"
ContentPlaceHolderID
="MiddleColumnZone"
runat
="server"
>
<
asp:Panel
ID
="Panel1"
runat
="server"
GroupingText
="用户列表"
>
<
br
/>
<
asp:GridView
ID
="GridView1"
runat
="server"
DataSourceID
="ObjectDataSource1"
DataKeyNames
="UserName"
AutoGenerateColumns
="False"
Width
="100%"
OnRowCommand
="GridView1_RowCommand"
>
<
Columns
>
<
asp:BoundField
HeaderText
="登录名"
DataField
="UserName"
ReadOnly
="true"
/>
<
asp:HyperLinkField
HeaderText
="电子邮件地址"
DataTextField
="Email"
DataNavigateUrlFormatString
="mailto:{0}"
DataNavigateUrlFields
="Email"
/>
<
asp:BoundField
HeaderText
="创建时间"
DataField
="CreationDate"
DataFormatString
="{0:MM/dd/yy h:mm tt}"
ReadOnly
="true"
/>
<
asp:BoundField
HeaderText
="活动时间"
DataField
="LastActivityDate"
DataFormatString
="{0:MM/dd/yy h:mm tt}"
ReadOnly
="true"
/>
<
asp:CheckBoxField
HeaderText
="审核"
DataField
="IsApproved"
HeaderStyle-HorizontalAlign
="Center"
ItemStyle-HorizontalAlign
="Center"
/>
<
asp:TemplateField
>
<
ItemTemplate
>
<
div
style
="width: 100%; text-align: right;"
>
<
asp:LinkButton
ID
="btnEdit"
CommandName
="Edit"
runat
="server"
>
编辑
</
asp:LinkButton
>
<
asp:LinkButton
ID
="btnDelete"
CommandName
="Delete"
runat
="server"
OnClientClick
="return confirm('您真的要删除吗?')"
>
删除
</
asp:LinkButton
>
</
div
>
</
ItemTemplate
>
<
EditItemTemplate
>
<
div
style
="width: 100%; text-align: right;"
>
<
asp:Button
ID
="btnUpdate"
runat
="server"
CommandName
="UpdateUser"
CommandArgument
="<%# Container.DataItemIndex %>"
Text
="更新"
/>
<
asp:Button
ID
="btnCancel"
runat
="server"
CommandName
="Cancel"
Text
="取消"
/>
</
div
>
</
EditItemTemplate
>
</
asp:TemplateField
>
</
Columns
>
</
asp:GridView
>
</
asp:Panel
>
<
hr
/>
<
asp:Panel
ID
="Panel2"
runat
="server"
GroupingText
="新增部用户"
>
<
br
/>
<
asp:CreateUserWizard
ID
="CreateUserWizard1"
runat
="server"
ContinueDestinationPageUrl
="~/Users.aspx"
DisableCreatedUser
="True"
EmailRegularExpression
=""
EmailRegularExpressionErrorMessage
=""
>
</
asp:CreateUserWizard
>
</
asp:Panel
>
<
asp:ObjectDataSource
ID
="ObjectDataSource1"
runat
="server"
TypeName
="System.Web.Security.Membership"
SelectMethod
="GetAllUsers"
DeleteMethod
="DeleteUser"
></
asp:ObjectDataSource
>
</
asp:Content
>
修改Users.aspx..cs
using
System;
using
System.Data;
using
System.Configuration;
using
System.Collections;
using
System.Web;
using
System.Web.Security;
using
System.Web.UI;
using
System.Web.UI.WebControls;
using
System.Web.UI.WebControls.WebParts;
using
System.Web.UI.HtmlControls;
public
partial
class
Users : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e) {
} protected void GridView1_RowCommand(object sender, GridViewCommandEventArgs e) { if (e.CommandName == "UpdateUser") { MembershipUser user = Membership.GetUser((string)GridView1.DataKeys[Convert.ToInt32(e.CommandArgument)].Value); if (((CheckBox)GridView1.Rows[Convert.ToInt32(e.CommandArgument)].Cells[4].Controls[0]).Checked) { user.IsApproved = true; } else { user.IsApproved = false; } Membership.UpdateUser(user); GridView1.EditIndex = -1; return; } } }
修改UserRole.aspx
<
asp:Content
ID
="MiddleColumnContent"
ContentPlaceHolderID
="MiddleColumnZone"
runat
="server"
>
<
asp:Panel
ID
="Panel1"
runat
="server"
GroupingText
="权限设置"
>
<
br
/>
选择用户
<
br
/>
<
asp:DropDownList
ID
="lstUsers"
runat
="server"
AutoPostBack
="true"
OnSelectedIndexChanged
="lstUsers_SelectedIndexChanged"
>
</
asp:DropDownList
>
<
br
/>
所有角色
<
br
/>
<
asp:CheckBoxList
ID
="chkRoles"
runat
="server"
>
</
asp:CheckBoxList
>
<
p
>
<
asp:Button
ID
="btnUpdate"
runat
="server"
Text
="更新"
OnClick
="btnUpdate_Click"
/>
</
p
>
</
asp:Panel
>
</
asp:Content
>
修改UserRole.aspx.cs
using
System;
using
System.Data;
using
System.Configuration;
using
System.Collections;
using
System.Web;
using
System.Web.Security;
using
System.Web.UI;
using
System.Web.UI.WebControls;
using
System.Web.UI.WebControls.WebParts;
using
System.Web.UI.HtmlControls;
public
partial
class
UserRole : System.Web.UI.Page
{ protected void Page_Load(object sender, EventArgs e) { if (!Page.IsPostBack) { BindUsers(); BindRoles(); } } private void BindUsers() { System.Web.Security.MembershipUserCollection users = System.Web.Security.Membership.GetAllUsers(); lstUsers.DataSource = users; lstUsers.DataTextField = "UserName"; lstUsers.DataValueField = "UserName"; lstUsers.DataBind(); } private void BindRoles() { chkRoles.Items.Clear(); string[] roles = System.Web.Security.Roles.GetAllRoles(); string[] userRoles = System.Web.Security.Roles.GetRolesForUser(lstUsers.SelectedValue); foreach (string role in roles) { ListItem item = new ListItem(); item.Text = role; item.Value = role; if (Array.IndexOf(userRoles, role) > -1) { item.Selected = true; } chkRoles.Items.Add(item); } } protected void lstUsers_SelectedIndexChanged(object sender, EventArgs e) { BindRoles(); } protected void btnUpdate_Click(object sender, EventArgs e) { foreach (ListItem item in chkRoles.Items) { if (item.Selected) { System.Web.Security.Roles.AddUserToRole(lstUsers.SelectedValue, item.Value); } else { System.Web.Security.Roles.RemoveUserFromRole(lstUsers.SelectedValue, item.Value); } } }}