/// <summary>
/// 获得指定表单参数的值
/// </summary>
/// <param name="strName">表单参数</param>
/// <param name="sqlSafeCheck">是否进行SQL安全检查</param>
/// <returns>表单参数的值</returns>
public static string GetFormString(string strName, bool sqlSafeCheck)
{
if (HttpContext.Current.Request.Form[strName] == null)
{
return("");
}
if (sqlSafeCheck && !SafeRequest.IsSafeSqlString(HttpContext.Current.Request.Form[strName]))
{
return("unsafe string");
}
return(HttpContext.Current.Request.Form[strName]);
}
/// <summary>
/// 获得指定表单参数的float类型值
/// </summary>
/// <param name="strName">表单参数</param>
/// <param name="defValue">缺省值</param>
/// <returns>表单参数的float类型值</returns>
public static float GetFormFloat(string strName, float defValue)
{
return(SafeRequest.StrToFloat(HttpContext.Current.Request.Form[strName], defValue));
}
/// <summary>
/// 获得指定表单参数的int类型值
/// </summary>
/// <param name="strName">表单参数</param>
/// <param name="defValue">缺省值</param>
/// <returns>表单参数的int类型值</returns>
public static int GetFormInt(string strName, int defValue)
{
return(SafeRequest.StrToInt(HttpContext.Current.Request.Form[strName], defValue));
}
