public 用户表 UserLogin(用户表 au)
{
StringBuilder sb = new StringBuilder();
sb.Append("SELECT A.ID, A.用户名,A.权限,A.姓名,A.部门ID,A.学校ID,A.职务,A.电话号码,A.人员照片,C.名称 as 部门名称,C.名称 as 学校名称 FROM 用户表 as a");
sb.Append(" INNER join 一级部门表 as c ON a.部门ID=c.ID ");
sb.Append("INNER JOIN 学校名称表 as s ON c.学校ID = s.ID");
sb.Append(" where (A.用户名=@username and A.密码 =@userpassword)");
SqlParameter[] para = { new SqlParameter("username", au.用户名), new SqlParameter("@userpassword", au.密码) };
SqlDataReader read = DBHelper.ExecuteReader(DBHelper.ConnectionString, CommandType.Text, sb.ToString(), para);
用户表 csuser = new 用户表();
if (read.Read())
{
csuser.ID = Convert.ToInt32(read["ID"]);
csuser.用户名 = read["用户名"].ToString();
csuser.权限 = Convert.ToInt32(read["权限"]);
csuser.二级部门ID = Convert.ToInt32(read["学校ID"]);
csuser.级部门ID = Convert.ToInt32(read["部门ID"]);
csuser.姓名 = read["姓名"].ToString();
csuser.职务 = read["职务"].ToString();
csuser.人员照片 = read["人员照片"].ToString();
csuser.级部门名称 = read["部门名称"].ToString();
csuser.二级部门名称 = read["学校名称"].ToString();
csuser.联系电话 = read["电话号码"].ToString();
}
read.Close();
return(csuser);
}
public List <用户表> listuser(int id)
{
try
{
StringBuilder sb = new StringBuilder();
string sql = string.Format("SELECT * FROM 用户表 where 部门ID = {0} ", id);
SqlDataReader read = DBHelper.ExecuteReader(DBHelper.ConnectionString, CommandType.Text, sql.ToString());
List <用户表> list = new List <用户表>();
用户表 modelx = new 用户表();
modelx.ID = 0;
modelx.姓名 = "全部";
list.Add(modelx);
while (read.Read())
{
用户表 model = new 用户表();
model.ID = Convert.ToInt32(read["ID"]);
model.姓名 = read["姓名"].ToString();
list.Add(model);
}
return(list);
}
catch (Exception)
{
throw;
}
}
public List <用户表> 用户表()
{
try
{
StringBuilder sb = new StringBuilder();
sb.Append("SELECT * FROM dbo.用户表");
SqlDataReader read = DBHelper.ExecuteReader(DBHelper.ConnectionString, CommandType.Text, sb.ToString());
List <用户表> list = new List <用户表>();
while (read.Read())
{
用户表 model = new 用户表();
model.ID = Convert.ToInt32(read["ID"]);
model.姓名 = read["姓名"].ToString();
list.Add(model);
}
return(list);
}
catch (Exception)
{
throw;
}
}
public int Update(用户表 用户表)
{
string sql =
"UPDATE 用户表 " +
"SET " +
" cardno = @cardno"
+ ", pwd = @pwd"
+ ", name = @name"
+ ", departid = @departid"
+ ", noused = @noused"
+ " WHERE id = @id";
SqlParameter[] para = new SqlParameter[]
{
new SqlParameter("@id", 用户表.Id)
, new SqlParameter("@cardno", ToDBValue(用户表.Cardno))
, new SqlParameter("@pwd", ToDBValue(用户表.Pwd))
, new SqlParameter("@name", ToDBValue(用户表.Name))
, new SqlParameter("@departid", ToDBValue(用户表.Departid))
, new SqlParameter("@noused", ToDBValue(用户表.Noused))
};
return(SqlHelper.ExecuteNonQuery(sql, para));
}
// 由 部门 , 工作证号为条件, 更改 密码
public void changPwd(用户表 mod)
{
string sql = @"update 用户表 set pwd = '{2}' where departid={0} and cardno='{1}'";
sql = string.Format(sql, mod.Departid, mod.Cardno, mod.Pwd);
SqlHelper.ExecuteNonQuery(sql);
}
public 用户表 ToModel(SqlDataReader reader)
{
用户表 用户表 = new 用户表();
用户表.Id = (Guid)ToModelValue(reader, "id");
用户表.Cardno = (string)ToModelValue(reader, "cardno");
用户表.Pwd = (string)ToModelValue(reader, "pwd");
用户表.Name = (string)ToModelValue(reader, "name");
用户表.Departid = (short)ToModelValue(reader, "departid");
用户表.Noused = (bool)ToModelValue(reader, "noused");
return(用户表);
}
protected void Login_Button_Click(object sender, EventArgs e)
{
Label1.Text = "";
用户表 loginuser = new 用户表();
loginuser.用户名 = Login_name.Text.Trim();
string mwpa = Pass_word.Text.Trim();
if (loginuser.用户名 == "" || mwpa == "")
{
//提示
Label1.Text = "请输入用户名或密码";
//Alert alert = new Alert();
//alert.Message = "请输入用户名或密码";
//alert.Title = "提示信息";
//alert.MessageBoxIcon = MessageBoxIcon.Warning;
//alert.Show();
return;
}
//密码转换MD5
loginuser.密码 = mwpa;
用户表 user = bll.UserLogin(loginuser);
if (user.ID == 0)
{
//用户名密码错误了
Label1.Text = "用户名或密码错误";
return;
}
else
{
//创建Session
//跳转页面
Session["UserID"] = user.ID;
Session["用户名"] = user.用户名;
Session["权限"] = user.权限;
Session["二级部门ID"] = user.二级部门ID;
Session["三级部门ID"] = user.级部门ID;
Session["姓名"] = user.姓名;
Session["职务"] = user.职务;
Session["电话号码"] = user.联系电话;
Session["三级部门名称"] = user.级部门名称;
Session["二级部门名称"] = user.二级部门名称;
Response.Redirect("index.aspx");
return;
}
}
public 用户表 Add(用户表 用户表)
{
string sql = "INSERT INTO 用户表 (id, cardno, pwd, name, departid, noused) VALUES (@id, @cardno, @pwd, @name, @departid, @noused)";
SqlParameter[] para = new SqlParameter[]
{
new SqlParameter("@id", ToDBValue(用户表.Id)),
new SqlParameter("@cardno", ToDBValue(用户表.Cardno)),
new SqlParameter("@pwd", ToDBValue(用户表.Pwd)),
new SqlParameter("@name", ToDBValue(用户表.Name)),
new SqlParameter("@departid", ToDBValue(用户表.Departid)),
new SqlParameter("@noused", ToDBValue(用户表.Noused)),
};
SqlHelper.ExecuteNonQuery(sql, para);
return(用户表);
}
private void btn_change_Click(object sender, EventArgs e)
{
string new1, new2, old;
old = txt_old.get_value();
new1 = txt_new1.get_value();
new2 = txt_new2.get_value();
if ((old == "") || (new1 == "") || (new2 == ""))
{
label1.Text = "密码不能为空";
return;
}
if (new1 != new2)
{
label1.Text = "新密码不一致!";
return;
}
var md5 = new MD5CryptoServiceProvider();
string t2 = BitConverter.ToString(md5.ComputeHash(Encoding.Default.GetBytes(old)), 4, 8);
用户表DAL dal = new 用户表DAL();
string mypwd = dal.getPwd(deptcode.ToString(), usercard);
if (mypwd == "NoPwd")
{
label1.Text = "老密码错误!";
return;
}
if (t2 == mypwd)
{
//var md5 = new MD5CryptoServiceProvider();
用户表 mod = new 用户表();
mod.Cardno = usercard;
mod.Departid = (short)deptcode;
mod.Pwd = BitConverter.ToString(md5.ComputeHash(Encoding.Default.GetBytes(new1)), 4, 8);
dal.changPwd(mod);
label1.Text = "密码修改完成!";
}
}
private void edit_user()
{
用户表 mod = new 用户表();
usergrid.get_select_index();
mod.Id = Guid.NewGuid();
mod.Name = txt_username.get_value();
mod.Cardno = txt_cardno.get_value();
if (txt_pwd.get_value() != txt_pwd1.get_value())
{
MessageBox.Show("两次输入的密码不一致");
return;
}
var md5 = new MD5CryptoServiceProvider();
mod.Pwd = BitConverter.ToString(md5.ComputeHash(Encoding.Default.GetBytes(txt_pwd.get_value())), 4, 8);
if (cmb_dept.Text == "")
{
MessageBox.Show("所属部门下拉框必须选择!");
return;
}
else
{
mod.Departid = short.Parse(cmb_dept.SelectedValue.ToString());
}
mod.Noused = (cmb_noused.SelectedIndex == 1);
用户表DAL dal = new 用户表DAL();
dal.Add(mod);
if (chk_admin.Checked)
{
mod.Departid = 1;
mod.Id = Guid.NewGuid();
dal.Add(mod);
}
}
protected void GetUserInfo()
{
用户表 loginuser = new 用户表();
string username_Value = Request.QueryString["userName"];
string password_Valud = Request.QueryString["Password"];
loginuser.用户名 = username_Value;
loginuser.密码 = password_Valud;
用户表 user = bll.UserLogin(loginuser);
//跳转页面
Session["UserID"] = user.ID;
Session["用户名"] = user.用户名;
Session["权限"] = user.权限;
Session["二级部门ID"] = user.二级部门ID;
Session["三级部门ID"] = user.级部门ID;
Session["姓名"] = user.姓名;
Session["职务"] = user.职务;
Session["联系电话"] = user.联系电话;
Session["三级部门名称"] = user.级部门名称;
Session["二级部门名称"] = user.二级部门名称;
}
public 用户表 UserLogin(用户表 au)
{
return(sql.UserLogin(au));
}
