public int UserLogin(string username, string password)
{
string sqlStr = "select count(*) from Users where UserName = @username and Password = @password";
SqlParameter[] sqlParam =
{
new SqlParameter("@username", SqlDbType.NVarChar, 20),
new SqlParameter("@password", SqlDbType.NVarChar, 50)
};
sqlParam[0].Value = username;
sqlParam[1].Value = EncryptUtil.CreateSHA256HashString(password);
object result = SqlHelper.ExcuteScalar(CommandType.Text, sqlStr, sqlParam);
int i = Convert.ToInt32(result);
return(i);
}
public void CreateUser(string username, string nickname, string password, string mail)
{
string sqlStr = "INSERT INTO Users(UserName,NickName,Password,Email,CreateDate,UpdateDate) VALUES (@Username,@Nickname,@Password,@Email,@CreateDate,@UpdateDate)";
SqlParameter[] sqlParam =
{
new SqlParameter("@Username", SqlDbType.NVarChar, 20),
new SqlParameter("@Nickname", SqlDbType.NVarChar, 20),
new SqlParameter("@Password", SqlDbType.NVarChar, 50),
new SqlParameter("@Email", SqlDbType.NVarChar, 20),
new SqlParameter("@CreateDate", SqlDbType.DateTime),
new SqlParameter("@UpdateDate", SqlDbType.DateTime)
};
sqlParam[0].Value = username;
sqlParam[1].Value = nickname;
sqlParam[2].Value = EncryptUtil.CreateSHA256HashString(password);
sqlParam[3].Value = mail;
sqlParam[4].Value = DateTime.Now;
sqlParam[5].Value = DateTime.Now;
SqlHelper.ExcuteNonQuery(CommandType.Text, sqlStr, sqlParam);
}