.net 登陆代码

    protected void Button1_Click(object sender, EventArgs e)
    {
        string myconnectionstring = System.Configuration.ConfigurationManager.AppSettings["connstr"];
        string mycommandstring = "SELECT * FROM who where who_name=" + "’" + TextBox1.Text + "’" + "and who_pwd = " + "’" + TextBox2.Text+ "’";
        SqlConnection myconnection = new SqlConnection(myconnectionstring);
     
        SqlCommand mycommand = new SqlCommand(mycommandstring, myconnection);
        myconnection.Open();
        SqlDataReader myreader = mycommand.ExecuteReader();
        if (myreader.Read())
        {
          Session["name"] = myreader["who_name"].ToString();
          Response.Redirect("postdoing.aspx");
        }
        else
        {
            Response.Write("<script>alert(‘用户名或密码不正确,请重新登陆’);</script>");
            Response.Redirect("login.aspx");
        }
    }

    protected void Button2_Click(object sender, EventArgs e)
    {
        TextBox1.Text = TextBox2.Text = "";
    }