edv/VERAG_Homepage
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Änderung Sicherheit erhöht

Browse Source
This commit is contained in:
ja
2021-11-16 11:59:05 +01:00
parent 67ed982029
commit 130a8ce620
3 changed files with 33 additions and 42 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
Global.asax
View File

@@ -24,6 +24,7 @@
void Application_Error(object sender, EventArgs e) void Application_Error(object sender, EventArgs e)
{ {
// Code, der ausgeführt wird, wenn ein nicht behandelter Fehler auftritt // Code, der ausgeführt wird, wenn ein nicht behandelter Fehler auftritt
Response.Redirect("../login/Error.aspx");
} }

16
login/Change_PW.aspx.vb
View File

@@ -34,8 +34,8 @@ Partial Class login_Change_PW
Dim dr As SqlDataReader = cmd.ExecuteReader() Dim dr As SqlDataReader = cmd.ExecuteReader()
If dr.HasRows Then If dr.HasRows Then
dr.Read() dr.Read()
If String.IsNullOrEmpty(usrname) = False Then
If getDateoftoken(Request.QueryString("Par1")) = True AndAlso usrname = dr("Username") AndAlso String.Equals(KundenNr, dr("KundenNr")) = True Then If getDateoftoken(Request.QueryString("Par1")) = True AndAlso usrname = dr("Username") AndAlso KundenNr = dr("KundenNr") AndAlso UsrID = dr("UserId") Then
Try Try
If IsPostBack Then If IsPostBack Then
If String.IsNullOrEmpty(txt_Pw.Text) = False AndAlso String.IsNullOrEmpty(txt_Pw_WH.Text) = False Then If String.IsNullOrEmpty(txt_Pw.Text) = False AndAlso String.IsNullOrEmpty(txt_Pw_WH.Text) = False Then
@@ -65,21 +65,11 @@ Partial Class login_Change_PW
Catch exc As Exception Catch exc As Exception
lbl_messagetext.Text = exc.Message lbl_messagetext.Text = exc.Message
End Try End Try
Else
'btn_submitpw.Enabled = False
txt_Pw.BackColor = Drawing.Color.Gray
txt_Pw.ForeColor = Drawing.Color.DarkGray
txt_Pw_WH.Enabled = False
txt_Pw_WH.BackColor = Drawing.Color.Gray
txt_Pw_WH.ForeColor = Drawing.Color.DarkGray
txt_Pw.Enabled = False
regexval_txt_Pw_WH.Enabled = False
End If
Else Else
VERAG_VARIABLES.initerrorcount() VERAG_VARIABLES.initerrorcount()
VERAG_VARIABLES.seterrorcount(1) VERAG_VARIABLES.seterrorcount(1)
lbl_messagetext.Text = VERAG_VARIABLES.geterrornumb + "Link ist abgelaufen. Bitte neue E-Mail senden." lbl_messagetext.Text = VERAG_VARIABLES.geterrornumb + "Link ist abgelaufen. Bitte neue E-Mail senden."
Response.Redirect("ForgotPW.aspx") 'Response.Redirect("ForgotPW.aspx")
End If End If
dr.Close() dr.Close()
End If End If

2
login/login_FLEX.aspx
View File

@@ -340,7 +340,7 @@
<tr style="color:#003680; height:86px;"> <tr style="color:#003680; height:86px;">
<td align="left" colspan="2"> <td align="left" colspan="2">
<asp:TextBox id="Username" runat="server" CssClass="bg-user-icon" TextMode="SingleLine" Width = "325" ValidationGroup="Login_M" Placeholder="Username" required="true" Font-Size="2.025em" style="margin-left:22px;color:#003680;border-radius: 8px 8px 8px 8px;-webkit-border-radius: 8px;-moz-border-radius: 8px;"></asp:TextBox> <asp:TextBox id="Username" runat="server" CssClass="bg-user-icon" TextMode="SingleLine" Width = "325" ValidationGroup="Login_M" Placeholder="Username" required="true" Font-Size="2.025em" style="margin-left:22px;color:#003680;border-radius: 8px 8px 8px 8px;-webkit-border-radius: 8px;-moz-border-radius: 8px;"></asp:TextBox>
<asp:RequiredFieldValidator ID="UserName_M_required" runat="server" ControlToValidate="Username" ErrorMessage="" ForeColor="Red" style="margin-left:22px;font-size:19px" ValidationGroup="Login_M" SetFocusOnError="true"></asp:RequiredFieldValidator> <asp:RequiredFieldValidator ID="UserName_M_required" runat="server" ControlToValidate="Username" ErrorMessage="" ForeColor="Red" style="margin-left:22px;font-size:19px" ValidationGroup="Login_M" SetFocusOnError="false"></asp:RequiredFieldValidator>
</td> </td>
</tr> </tr>
<tr style="color:#003680; height:86px;"> <tr style="color:#003680; height:86px;">