protected void Button1_Click1(object sender, EventArgs e)
{
if (Page.IsValid)
{
string name, realName, sex, question, answer, email; //定义变量
name = Session["userName"].ToString(); //将Session["userName"]里的内容传给name
realName = txtTrueName.Text.Trim(); //将真实姓名传给变量realname
sex = lstSex.SelectedItem.Text.Trim();
question = lstQuestion.SelectedItem.Text.Trim();
answer = txtAnswer.Text.Trim();
email = txtEmail.Text.Trim();
string sql = @"UPDATE Users SET trueName=@trueName,sex=@sex," +
"question=@question,answer=@answer,email=@email WHERE userName='******'"; //定义SQL语句根据用户名修改其他信息
SqlParameter paramsTrueName = new SqlParameter("@truename", txtTrueName.Text); //将键盘输入的内容传给变量
SqlParameter paramsSex = new SqlParameter("@sex", lstSex.SelectedItem.Text);
SqlParameter paramsEmail = new SqlParameter("@email", txtEmail.Text);
SqlParameter paramsQuestion = new SqlParameter("@question", lstQuestion.SelectedItem.Text);
SqlParameter paramsAnswer = new SqlParameter("@answer", txtAnswer.Text);
SqlParameter[] paramsValue = new SqlParameter[] { paramsTrueName, paramsSex, paramsEmail, paramsQuestion, paramsAnswer };
int ret = DBHelper.execSql(sql, paramsValue); //调用 DBHelper里的execSql方法,然后传入SQL语句和数组值
if (ret > 0) //如果结果大于0
{
Response.Redirect("index.aspx"); //跳转登录页面
}
else
{
Response.Write("<script>alert('修改失败,请重试!')</script>");//弹出提示信息
}
}
}
protected void Button1_Click1(object sender, EventArgs e)
{
string sql1 = "select count(*) from users where username=@username "; //执行查询语句,查看用户名是否存在
SqlParameter paramsUserName1 = new SqlParameter("@username", txtUserName.Text); //获取从键盘上输入的值
SqlParameter[] paramsValue1 = new SqlParameter[] { paramsUserName1 }; //定义一个 SqlParameter[] paramsValue1类型的数组,初始化
int Ret = DBHelper.execScalar(sql1, paramsValue1); //调用 DBHelper里的execScalar方法,然后传入SQL语句和数组值
if (Ret > 0) //如果查询结果大于0
{
Response.Write("<script>alert('用户名已存在!')</script>"); //输出用户名已存在
return; //返回
}
string sql = "insert into users (username,pwd,truename,sex,email,question,answer)values (@username,@pwd,@truename,@sex,@email,@question,@answer)"; //执行一条插入语句,用来把键盘输入的值插入到数据库中
SqlParameter paramsUserName = new SqlParameter("@username", txtUserName.Text); //将键盘输入的内容传给变量
SqlParameter paramsPWD = new SqlParameter("@pwd", txtPWD.Text);
SqlParameter paramsTrueName = new SqlParameter("@truename", txtTrueName.Text);
SqlParameter paramsSex = new SqlParameter("@sex", lstSex.SelectedItem.Text);
SqlParameter paramsEmail = new SqlParameter("@email", txtEmail.Text);
SqlParameter paramsQuestion = new SqlParameter("@question", lstQuestion.SelectedItem.Text);
SqlParameter paramsAnswer = new SqlParameter("@answer", txtAnswer.Text);
SqlParameter[] paramsValue = new SqlParameter[] { paramsUserName, paramsPWD, paramsTrueName, paramsSex, paramsEmail, paramsQuestion, paramsAnswer }; //将数组初始化
int ret = DBHelper.execSql(sql, paramsValue); //调用 DBHelper里的execScalar方法,然后传入SQL语句和数组值
if (ret > 0) //如果查询结果大于0
{
Response.Redirect("index.aspx"); //返回登录界面
}
else
{
Response.Write("<script>alert('输入重复,请修改!')</script>");//重新输入
}
}
