edv/VERAG_Homepage
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Änderungen an seitensicherheitsmechanismus um Angirffe abzuwehen und nur authentifizierte nutzer zuzulassen, welche von der Login-Page kommen und so eine Session variable erzeugt haben mit der CustomerId drin, um Querystrings zu sparen. Auch das Page_Laod Event wird überarbeitet.

Browse Source
This commit is contained in:
ja
2021-10-29 14:37:24 +02:00
parent 7df36dc972
commit 014fefb710
16 changed files with 362 additions and 352 deletions
Download Patch File Download Diff File Expand all files Collapse all files

195
Customers/Invoices.aspx.vb
View File

@@ -14,34 +14,40 @@ Partial Class Customers_Invoices
Dim reNr As String = ""
Protected Sub Page_Load(ByVal sender As Object, ByVal e As System.EventArgs) Handles Me.Load
Page.UnobtrusiveValidationMode = UnobtrusiveValidationMode.WebForms
DataBind()
tbl_Header_row.TableSection = TableRowSection.TableHeader
If (Page.IsPostBack) Then
valreq_pickdate1.Validate()
valreq_pickdate2.Validate()
If valreq_pickdate1.IsValid And valreq_pickdate2.IsValid Then
valDateRange_1.Validate()
valDateRange_2.Validate()
If valDateRange_1.IsValid AndAlso valDateRange_2.IsValid Then
datevon = Date.Parse(pickdate1.Text)
datebis = Date.Parse(pickdate2.Text)
End If
End If
Else
If Me.Page.User.Identity.IsAuthenticated Then
Try
Kdnrtext = Session.Item("CustomerID")
Catch A As UnauthorizedAccessException When String.IsNullOrEmpty(Kdnrtext)
MsgBox("Dieser Bereich ist nicht gestattet! Ein Fehler ist bei der Validierung der ID aufgetreten! Bitte erneut versuchen!", MsgBoxStyle.Information, "Error in User Area!")
End Try
Page.UnobtrusiveValidationMode = UnobtrusiveValidationMode.WebForms
DataBind()
tbl_Header_row.TableSection = TableRowSection.TableHeader
If (Page.IsPostBack And normaltable.EnableViewState = False) Then
Page.MaintainScrollPositionOnPostBack = True
normaltable.EnableViewState = True
lbl_von.Visible = True
lbl_bis.Visible = True
valDateRange_1.Enabled = True
valDateRange_2.Enabled = True
Dim erster = New Date(Now().Year, Now().Month, 1)
Dim ersterdat = erster.Day.ToString + "." + Now().Month.ToString + "." + Now().Year.ToString
pickdate1.Text = erster.Day.ToString + "." + Now().Month.ToString + "." + Now().Year.ToString
' MsgBox(ersterdat)
datevon = ersterdat
datebis = Date.Parse(Now().Day.ToString + "." + Now().Month.ToString + "." + Now().Year.ToString).ToString
pickdate2.Text = Now().ToShortDateString()
pickdate1.Text = erster.Day.ToString + "." + Now().Month.ToString + "." + Now().Year.ToString
datevon = Date.Parse(pickdate1.Text)
datebis = Date.Parse(pickdate2.Text)
Else
Page.MaintainScrollPositionOnPostBack = False
normaltable.EnableViewState = True
lbl_von.Visible = True
lbl_bis.Visible = True
valDateRange_1.Enabled = True
valDateRange_2.Enabled = True
Dim erster = New Date(Now().Year, Now().Month, 1)
Dim ersterdat = "1." + Now().Month.ToString + "." + Now().Year.ToString
pickdate1.Text = erster.Day.ToString + "." + Now().Month.ToString + "." + Now().Year.ToString
' MsgBox(ersterdat)
datevon = ersterdat
datebis = Date.Parse(Now().Day.ToString + "." + Now().Month.ToString + "." + Now().Year.ToString).ToString
pickdate2.Text = Now().ToShortDateString()
pickdate1.Text = erster.Day.ToString + "." + Now().Month.ToString + "." + Now().Year.ToString
End If
Else
FormsAuthentication.RedirectToLoginPage()
End If
End Sub
@@ -158,122 +164,17 @@ Partial Class Customers_Invoices
reNr = ""
End Sub
Protected Sub pickdate1_TextChanged(sender As Object, e As EventArgs)
End Sub
Protected Sub valDateRange_1_ServerValidate(source As Object, args As ServerValidateEventArgs)
Dim minDate As DateTime = DateTime.Parse("01.04.2001")
Dim maxDate As DateTime = DateTime.Parse(DateTime.Now.ToShortDateString)
Dim dt As DateTime
args.IsValid = (DateTime.TryParse(args.Value, dt) AndAlso
dt <= maxDate AndAlso
dt >= minDate)
End Sub
Protected Sub pickdate2_TextChanged(sender As Object, e As EventArgs)
End Sub
Protected Sub valDateRange_2_ServerValidate(source As Object, args As ServerValidateEventArgs)
Dim minDate As DateTime = DateTime.Parse("01." + Date.Now.Month.ToString + ".2001")
Dim maxDate As DateTime = DateTime.Parse(DateTime.Now.ToShortDateString)
Dim dt As DateTime
args.IsValid = (DateTime.TryParse(args.Value, dt) AndAlso
dt <= maxDate AndAlso
dt >= minDate) And dt < Date.Now.AddDays(-1)
End Sub
Protected Sub txt_LKWNr_TextChanged(sender As Object, e As EventArgs)
If String.IsNullOrEmpty(txt_LKWNr.Text) Then
regexval_txt_LKW.Enabled = False
Else
regexval_txt_LKW.Enabled = True
End If
End Sub
Protected Sub txt_Empfaenger_TextChanged(sender As Object, e As EventArgs)
If String.IsNullOrEmpty(txt_Empfaenger.Text) Then
regexval_txt_Empfaenger.Enabled = False
Else
regexval_txt_Empfaenger.Enabled = True
End If
End Sub
Protected Sub txt_Absender_TextChanged(sender As Object, e As EventArgs)
If String.IsNullOrEmpty(txt_Absender.Text) Then
regexval_txt_Absender.Enabled = False
Else
regexval_txt_Absender.Enabled = True
End If
End Sub
Protected Sub txt_ReNr_TextChanged(sender As Object, e As EventArgs)
If String.IsNullOrEmpty(txt_ReNr_M.Text) Then
regexval_txt_ReNr_M.Enabled = False
Else
regexval_txt_ReNr_M.Enabled = True
End If
End Sub
Protected Sub txt_KdNrAuftrag_TextChanged(sender As Object, e As EventArgs)
If String.IsNullOrEmpty(txt_KdNrAuftrag.Text) Then
regexval_txt_KdNrAuftrag.Enabled = False
Else
regexval_txt_KdNrAuftrag.Enabled = True
End If
End Sub
Protected Sub txt_LKWNr_M_TextChanged(sender As Object, e As EventArgs)
If String.IsNullOrEmpty(txt_LKWNr_M.Text) Then
regexval_txt_LKW_M.Enabled = False
Else
regexval_txt_LKW_M.Enabled = True
End If
End Sub
Protected Sub txt_KdNrAuftrag_M_TextChanged(sender As Object, e As EventArgs)
If String.IsNullOrEmpty(txt_KdNrAuftrag_M.Text) Then
regexval_txt_KdNrAuftrag_M.Enabled = False
Else
regexval_txt_KdNrAuftrag_M.Enabled = True
End If
End Sub
Protected Sub txt_Absender_M_TextChanged(sender As Object, e As EventArgs)
If String.IsNullOrEmpty(txt_Absender_M.Text) Then
regexval_txt_Absender_M.Enabled = False
Else
regexval_txt_Absender_M.Enabled = True
End If
End Sub
Protected Sub txt_ReNr_M_TextChanged(sender As Object, e As EventArgs)
If String.IsNullOrEmpty(txt_ReNr_M.Text) Then
regexval_txt_ReNr_M.Enabled = False
Else
regexval_txt_ReNr_M.Enabled = False
End If
End Sub
Protected Sub txt_Empfaenger_M_TextChanged(sender As Object, e As EventArgs)
If String.IsNullOrEmpty(txt_Empfaenger_M.Text) Then
regexval_txt_Empfaenger_M.Enabled = False
Else
regexval_txt_Empfaenger_M.Enabled = True
End If
End Sub
Protected Sub Send_Data_Click(sender As Object, e As EventArgs)
dt = Nothing
pickdate1.ValidateRequestMode = UI.ValidateRequestMode.Enabled
pickdate2.ValidateRequestMode = UI.ValidateRequestMode.Enabled
valreq_pickdate1.Validate()
valreq_pickdate2.Validate()
If valreq_pickdate1.IsValid And valreq_pickdate2.IsValid And Kdnrtext = Not "" Then
If txt_Absender.Text IsNot "" Then
valDateRange_1.Validate()
valDateRange_2.Validate()
If Not String.IsNullOrEmpty(txt_Absender.Text) And valDateRange_1.IsValid And valDateRange_2.IsValid Then
regexval_txt_Absender.Enabled = True
regexval_txt_Absender.Validate()
txt_Absender.ValidateRequestMode = UI.ValidateRequestMode.Enabled
@@ -287,7 +188,7 @@ Partial Class Customers_Invoices
MsgBox(ex.Message)
End Try
End If
If txt_Empfaenger.Text IsNot "" Then
If Not String.IsNullOrEmpty(txt_Empfaenger.Text) Then
regexval_txt_Empfaenger.Enabled = True
regexval_txt_Empfaenger.Validate()
txt_Empfaenger.ValidateRequestMode = UI.ValidateRequestMode.Enabled
@@ -301,7 +202,7 @@ Partial Class Customers_Invoices
MsgBox(ex.Message)
End Try
End If
If txt_KdNrAuftrag.Text IsNot "" Then
If Not String.IsNullOrEmpty(txt_KdNrAuftrag.Text) Then
regexval_txt_KdNrAuftrag.Enabled = True
regexval_txt_KdNrAuftrag.Validate()
txt_KdNrAuftrag.ValidateRequestMode = UI.ValidateRequestMode.Enabled
@@ -315,7 +216,7 @@ Partial Class Customers_Invoices
MsgBox(ex.Message)
End Try
End If
If txt_LKWNr.Text IsNot "" Then
If Not String.IsNullOrEmpty(txt_LKWNr.Text) Then
regexval_txt_LKW.Enabled = True
regexval_txt_LKW.Validate()
txt_LKWNr.ValidateRequestMode = UI.ValidateRequestMode.Enabled
@@ -329,7 +230,7 @@ Partial Class Customers_Invoices
MsgBox(ex.Message)
End Try
End If
If txt_ReNr.Text IsNot "" Then
If Not String.IsNullOrEmpty(txt_ReNr.Text) Then
regexval_txt_ReNr.Enabled = True
regexval_txt_ReNr.Validate()
txt_ReNr.ValidateRequestMode = UI.ValidateRequestMode.Enabled
@@ -344,7 +245,7 @@ Partial Class Customers_Invoices
End Try
End If
If txt_Absender_M.Text IsNot "" Then
If Not String.IsNullOrEmpty(txt_Absender_M.Text) Then
txt_Absender_M.ValidateRequestMode = UI.ValidateRequestMode.Enabled
Try
Absender = txt_Absender_M.Text
@@ -352,7 +253,7 @@ Partial Class Customers_Invoices
MsgBox(ex.Message)
End Try
End If
If txt_Empfaenger_M.Text IsNot "" Then
If Not String.IsNullOrEmpty(txt_Empfaenger_M.Text) Then
txt_Empfaenger_M.ValidateRequestMode = UI.ValidateRequestMode.Enabled
Try
Empfaenger = txt_Empfaenger_M.Text
@@ -360,7 +261,7 @@ Partial Class Customers_Invoices
MsgBox(ex.Message)
End Try
End If
If txt_KdNrAuftrag_M.Text IsNot "" Then
If Not String.IsNullOrEmpty(txt_KdNrAuftrag_M.Text) Then
txt_KdNrAuftrag_M.ValidateRequestMode = UI.ValidateRequestMode.Enabled
Try
KDNAFNR = txt_KdNrAuftrag_M.Text
@@ -368,7 +269,7 @@ Partial Class Customers_Invoices
MsgBox(ex.Message)
End Try
End If
If txt_LKWNr_M.Text IsNot "" Then
If Not String.IsNullOrEmpty(txt_LKWNr_M.Text) Then
txt_LKWNr_M.ValidateRequestMode = UI.ValidateRequestMode.Enabled
Try
LKWNR = txt_LKWNr_M.Text
@@ -376,7 +277,8 @@ Partial Class Customers_Invoices
MsgBox(ex.Message)
End Try
End If
If txt_ReNr_M.Text IsNot "" Then
If Not String.IsNullOrEmpty(txt_ReNr_M.Text) Then
txt_ReNr_M.ValidateRequestMode = UI.ValidateRequestMode.Enabled
Try
reNr = txt_ReNr_M.Text
@@ -406,12 +308,11 @@ Partial Class Customers_Invoices
End Try
End If
Kdnrtext = VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(Request.QueryString("P4"))
'MsgBox(Kdnrtext)
If String.IsNullOrEmpty(Kdnrtext) = False And String.IsNullOrEmpty(datevon.ToString) = False And String.IsNullOrEmpty(datebis.ToString) = False Then
dt = VERAG_PROG_ALLGEMEIN.cRechnungsausgang.GET_LIST_WEB(Integer.Parse(Kdnrtext), datevon, datebis, Integer.Parse(reNr), Absender, Empfaenger, LKWNR, KDNAFNR)
ElseIf String.IsNullOrEmpty(Kdnrtext) = True Or String.IsNullOrEmpty(datevon.ToString) = True And String.IsNullOrEmpty(datebis.ToString) = True And String.IsNullOrEmpty(reNr) = True And String.IsNullOrEmpty(Absender) = False And String.IsNullOrEmpty(LKWNR) = False And String.IsNullOrEmpty(Empfaenger) = False And String.IsNullOrEmpty(KDNAFNR) = False Then
dt = VERAG_PROG_ALLGEMEIN.cRechnungsausgang.GET_LIST_WEB(Integer.Parse(Kdnrtext), datevon, datebis, Integer.Parse(reNr), Absender, Empfaenger, LKWNR, KDNAFNR)
valreq_pickdate1.Validate()
valreq_pickdate2.Validate()
End If