/// <summary>
/// 在同类中排序
/// </summary>
/// <param name="id">lb.id</param>
/// <param name="isUp">1=升序,0=降序</param>
/// <returns>排序后的dataTable</returns>
public static void lbOrderUP(string id, bool isUp)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT id,lbid,parentid,orderid FROM " + com.tablePrefix + "lb WHERE id=" + id;
DataTable dt = db.Get_DataTable();
string parentid = dt.Rows[0]["parentid"].ToString();
string curOrder = dt.Rows[0]["orderid"].ToString();
if (isUp)
{
db.sql = "SELECT TOP 1 id,lbid,parentid,orderid FROM " + com.tablePrefix + "lb WHERE parentid=" + parentid + " AND orderid<" + curOrder + " ORDER BY orderid DESC";
}
else
{
db.sql = "SELECT TOP 1 id,lbid,parentid,orderid FROM " + com.tablePrefix + "lb WHERE parentid=" + parentid + " AND orderid>" + curOrder + " ORDER BY orderid";
}
DataTable dt1 = db.Get_DataTable();
if (dt1.Rows.Count > 0)
{
string newOrder = dt1.Rows[0]["orderid"].ToString();
string otherId = dt1.Rows[0]["id"].ToString();
db.sql = "UPDATE " + com.tablePrefix + "lb SET orderid=" + newOrder + " WHERE id=" + id;
db.ExecSql();
db.sql = "UPDATE " + com.tablePrefix + "lb SET orderid=" + curOrder + " WHERE id=" + otherId;
db.ExecSql();
}
}
public static string MaxNewsid()
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT ISNULL(Max(NewsID),0)+1 AS NewsID FROM " + com.tablePrefix + "News";
DataTable dt = db.Get_DataTable();
return dt.Rows[0][0].ToString();
}
public static DataTable AdminInfo(string username)
{
string sql = "SELECT * FROM " + com.tablePrefix + "Admin WHERE username='******'";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
return db.Get_DataTable();
}
public static DataTable AdminInfo(int id)
{
string sql = "SELECT * FROM " + com.tablePrefix + "Admin WHERE id=" + id.ToString() + "";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
return db.Get_DataTable();
}
public static void del(string id)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "UPDATE dxlb SET isDeleted=1 WHERE id=" + id;
db.ExecSql();
}
public static DataTable AdminInfo(int id)
{
string sql = "SELECT * FROM " + com.tablePrefix + "Admin WHERE id=" + id.ToString() + "";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
return(db.Get_DataTable());
}
public static DataTable AdminInfo(string username)
{
string sql = "SELECT * FROM " + com.tablePrefix + "Admin WHERE username='******'";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
return(db.Get_DataTable());
}
/// <summary>
/// 添加栏目
/// </summary>
/// <param name="lbname">栏目名称</param>
/// <param name="parentid">父栏目ID</param>
/// <returns>int,1=成功,0=已存在</returns>
public static string AddLb(string lbname, string parentid)
{
string maxlbid = MaxLbid();
string sql = "INSERT INTO " + com.tablePrefix + "lb (lbid,lbname,parentid,OrderId) VALUES(" + maxlbid + ",'" + lbname + "'," + parentid + "," + maxlbid + ")";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
return db.ExecSql();
}
public static void Update(string id, string lbname, string orderid)
{
string sql = "UPDATE " + com.tablePrefix + "lb SET lbname='" + lbname + "',orderid=" + orderid + " WHERE id=" + id;
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
db.ExcSql();
}
public static string MaxNewsid()
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT ISNULL(Max(NewsID),0)+1 AS NewsID FROM " + com.tablePrefix + "News";
DataTable dt = db.Get_DataTable();
return(dt.Rows[0][0].ToString());
}
public static string MaxLbid()
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT ISNULL(Max(lbid),0)+1 AS lbid FROM " + com.tablePrefix + "lb";
DataTable dt = db.Get_DataTable();
return(dt.Rows[0][0].ToString());
}
/// <summary>
/// 添加栏目
/// </summary>
/// <param name="lbname">栏目名称</param>
/// <param name="parentid">父栏目ID</param>
/// <returns>int,1=成功,0=已存在</returns>
public static string AddLb(string lbname, string parentid)
{
string maxlbid = MaxLbid();
string sql = "INSERT INTO " + com.tablePrefix + "lb (lbid,lbname,parentid,OrderId) VALUES(" + maxlbid + ",'" + lbname + "'," + parentid + "," + maxlbid + ")";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
return(db.ExecSql());
}
public static string GetLbid(string NewsID)
{
string sql = "SELECT lbid FROM " + com.tablePrefix + "News WHERE NewsID=" + NewsID;
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
DataTable dt = db.Get_DataTable();
string result = "0";
if (dt.Rows.Count > 0)
result = dt.Rows[0][0].ToString();
dt.Dispose();
return result;
}
public bool emailExists(string email)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT * FROM " + com.tablePrefix + "Members WHERE email='" + email + "'";
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
return true;
}
else
{
return false;
}
}
public static bool lbnameExists(string lbname)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT 1 FROM " + com.tablePrefix + "lb WHERE lbname='" + lbname + "'";
if (db.Get_DataTable().Rows.Count > 0)
{
return(true);
}
else
{
return(false);
}
}
public bool exists(string uname)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT * FROM " + com.tablePrefix + "Members WHERE username='******'";
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
return true;
}
else
{
return false;
}
}
public static bool AdminDel(string id)
{
string sql = "DELETE Admin WHERE id=" + id;
try
{
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
db.ExecSql();
return true;
}
catch
{
return false;
}
}
protected void Button1_Click(object sender, EventArgs e)
{
string pwd = txtPwd.Text;
string newPwd = txtNewPwd.Text;
string newPwd2 = txtNewPwd2.Text;
if (pwd.Length == 0)
{
alert.Show(Page, "请填写原密码");
return;
}
if (newPwd.Length == 0)
{
alert.Show(Page, "请填写新密码");
return;
}
if (newPwd != newPwd2)
{
alert.Show(Page, "新密码与确认新密码不一致");
return;
}
string memberName = Session["AdminName"].ToString();
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT pwd FROM " + com.tablePrefix + "admin WHERE username='******'";
DataTable dt = db.Get_DataTable();
pwd = com.MD5(pwd, 1);
newPwd = com.MD5(newPwd, 1);
if (dt.Rows.Count > 0)
{
if (pwd != dt.Rows[0]["pwd"].ToString())
{
alert.Show(Page, "原密码错误");
return;
}
else
{
db.sql = "UPDATE admin SET Pwd='" + newPwd + "' WHERE username='******'";
db.ExecSql();
alert.Show(Page,"修改成功");
}
}
else
{
Response.Redirect("Login.aspx");
}
}
public static bool AdminDel(string id)
{
string sql = "DELETE Admin WHERE id=" + id;
try
{
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
db.ExecSql();
return(true);
}
catch
{
return(false);
}
}
public bool exists(string uname)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT * FROM " + com.tablePrefix + "Members WHERE username='******'";
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
return(true);
}
else
{
return(false);
}
}
public static string GetLbid(string NewsID)
{
string sql = "SELECT lbid FROM " + com.tablePrefix + "News WHERE NewsID=" + NewsID;
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
DataTable dt = db.Get_DataTable();
string result = "0";
if (dt.Rows.Count > 0)
{
result = dt.Rows[0][0].ToString();
}
dt.Dispose();
return(result);
}
public bool login(string email, string pwd)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT * FROM " + com.tablePrefix + "Members WHERE email='" + email + "' AND pwd='" + pwd + "'";
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
System.Web.HttpContext.Current.Session["username"] = dt.Rows[0]["username"].ToString();
return(true);
}
else
{
return(false);
}
}
//public static DXLb getParent(DXLb thislb)
//{
// Models.DbClassesDataContext dbc = new Models.DbClassesDataContext();
// var qry = from lb in dbc.DXLb where lb.Id == thislb.ParentId select lb;
// DXLb parent = dbc.DXLb.First(c => c.ParentId == thislb.ParentId);
// return parent;
//}
public static string getPid(string lbid)
{
string sql = "SELECT parentid from " + com.tablePrefix + "lb WHERE Id=" + lbid + "";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
return(dt.Rows[0][0].ToString());
}
else
{
return("0");
}
}
public static string adminEdit(string id, string pwd, string role)
{
string sql = "";
if (pwd.Length > 0)
sql = "UPDATE Admin SET pwd='" + pwd + "',role='" + role + "' WHERE id=" + id;
else
sql = "UPDATE Admin SET role='" + role + "' WHERE id=" + id;
try
{
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
db.ExecSql();
return "1";
}
catch (Exception ex)
{
return ex.Message;// +"SQL:" + sql;
}
}
/**/
/// <summary>
/// 去除HTML标记
/// </summary>
/// <param name="NoHTML">包括HTML的源码 </param>
/// <returns>已经去除后的文字</returns>
public static string NoHTML(string Htmlstring)
{
//删除脚本
Htmlstring = Regex.Replace(Htmlstring, @"<script[^>]*?>.*?</script>", "", RegexOptions.IgnoreCase);
//删除HTML
Htmlstring = Regex.Replace(Htmlstring, @"<(.[^>]*)>", "", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"([/r/n])[/s]+", "", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"-->", "", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"<!--.*", "", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"&(quot|#34);", "\"", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"&(amp|#38);", "&", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"&(lt|#60);", "<", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"&(gt|#62);", ">", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"&(nbsp|#160);", " ", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"&(iexcl|#161);", "/xa1", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"&(cent|#162);", "/xa2", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"&(pound|#163);", "/xa3", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"&(copy|#169);", "/xa9", RegexOptions.IgnoreCase);
Htmlstring = Regex.Replace(Htmlstring, @"&#(/d+);", "", RegexOptions.IgnoreCase);
Htmlstring.Replace("<", "");
Htmlstring.Replace(">", "");
Htmlstring.Replace("/r/n", "");
Htmlstring = HttpContext.Current.Server.HtmlEncode(Htmlstring).Trim();
return(Htmlstring);
}
/*
* 1 首页
* 2 1-3年级
* 3 4-6年级
* 4 初中
* 5 高中
* 6 成人
*/
public static seo getSeo(string lbid)
{
seo s = new seo();
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT id,SeoTitle,SeoKey,SeoDesc FROM " + com.tablePrefix + "TB_SEO WHERE lbid=" + lbid;
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
s.title = dt.Rows[0]["SeoTitle"].ToString();
s.key = dt.Rows[0]["SeoKey"].ToString();
s.desc = dt.Rows[0]["SeoDesc"].ToString();
}
else
{
s.title = s.key = s.desc = "";
}
return(s);
}
/// <summary>
/// 获取栏目名称
/// </summary>
/// <param name="lbid">栏目ID</param>
/// <returns>栏目名称</returns>
public static string getLbname(string lbid)
{
if (lbid != "0")
{
string sql = "SELECT lbname from DXLb WHERE Id=" + lbid + "";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
return(dt.Rows[0][0].ToString());
}
else
{
return("");
}
}
else
{
return("顶级栏目");
}
}
// string sql = @"INSERT INTO [Members]
// ([username]
// ,[pwd]
// ,[email]
// ,sex
// ,[photo])
// VALUES
// (<username, varchar(50),>
// ,<pwd, varchar(100),>
// ,<email, varchar(100),>
// ,<sex, varchar(2),>
// ,<photo, varchar(500),>)";
public Member getMemberInfo(string email)
{
Member m = new Member();
string sql = "SELECT userid,username,email,sex FROM " + com.tablePrefix + "Members WHERE email='" + email + "'";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
m.userid = dt.Rows[0]["userid"].ToString();
m.username = dt.Rows[0]["username"].ToString();
m.email = dt.Rows[0]["email"].ToString();
m.sex = dt.Rows[0]["sex"].ToString();
return(m);
}
else
{
return(null);
}
}
/// <summary>
/// 获取栏目名称
/// </summary>
/// <param name="lbid">栏目ID</param>
/// <returns>栏目名称</returns>
public static string getLbname(string lbid)
{
if (lbid != "0")
{
string sql = "SELECT lbname from DXLb WHERE Id=" + lbid + "";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
return dt.Rows[0][0].ToString();
}
else
{
return "";
}
}
else
{
return "顶级栏目";
}
}
public static string adminEdit(string id, string pwd, string role)
{
string sql = "";
if (pwd.Length > 0)
{
sql = "UPDATE Admin SET pwd='" + pwd + "',role='" + role + "' WHERE id=" + id;
}
else
{
sql = "UPDATE Admin SET role='" + role + "' WHERE id=" + id;
}
try
{
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
db.ExecSql();
return("1");
}
catch (Exception ex)
{
return(ex.Message);// +"SQL:" + sql;
}
}
protected void Page_Load(object sender, EventArgs e)
{
/*
* lbid lbname parentid
* 1 Mian质新闻 0
* 2 Mian新闻 1
* 3 Mian百科 1
* 4 Mian故事 1
* 5 Mian尚前沿 1
* 6 Mian最行动 0
* 7 Mian事预告 6
* 8 爱Mian行动 6
* 9 Mian享瞬间 0
* 10 精采瞬间 9
* 11 Mian影像 9
* 12 Mian教堂 9
* 13 Mian在身边 0
* 14 微Mian互动 13
* 15 Mian下载 13
* 16 乐Mian游戏 13
* 17 图片集管理 10
*/
string lbid = pg.request("lbid");
if (lbid == "")
{
lbid = "8";
}
string pagesize = pg.request("pagesize");
string curpage = pg.request("curpage");
string pageCount = "";//总页数
if (pagesize == "")
{
pagesize = "5";
}
if (curpage == "")
{
curpage = "1";
}
string lbname = clsLB.getLbname(lbid);
SQLHelper_ db = new SQLHelper_();
string sql = "SELECT NewsID AS ID,Title,pic,href AS LinkUrl FROM News WHERE lbid=" + lbid + " ORDER BY EditTime DESC";
sql = "exec sp_GetPageData '" + sql + "'," + curpage + "," + pagesize;
db.sql = sql;
DataSet ds = db.Get_DataSet();
DataTable dt = ds.Tables[2];
pageCount = ds.Tables[1].Rows[0][2].ToString();
string strJson = string.Empty;
strJson = com.DataTableToJson(lbname, dt, pageCount);
Response.Write(strJson);
Response.End();
}
/*
1 首页
2 1-3年级
3 4-6年级
4 初中
5 高中
6 成人
*/
public static seo getSeo(string lbid)
{
seo s = new seo();
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT id,SeoTitle,SeoKey,SeoDesc FROM " + com.tablePrefix + "TB_SEO WHERE lbid=" + lbid;
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
s.title = dt.Rows[0]["SeoTitle"].ToString();
s.key = dt.Rows[0]["SeoKey"].ToString();
s.desc = dt.Rows[0]["SeoDesc"].ToString();
}
else
{
s.title = s.key = s.desc = "";
}
return s;
}
//public static DXLb getParent(DXLb thislb)
//{
// Models.DbClassesDataContext dbc = new Models.DbClassesDataContext();
// var qry = from lb in dbc.DXLb where lb.Id == thislb.ParentId select lb;
// DXLb parent = dbc.DXLb.First(c => c.ParentId == thislb.ParentId);
// return parent;
//}
public static string getPid(string lbid)
{
string sql = "SELECT parentid from " + com.tablePrefix + "lb WHERE Id=" + lbid + "";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
return dt.Rows[0][0].ToString();
}
else
{
return "0";
}
}
public static bool lbnameExists(string lbname)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT 1 FROM " + com.tablePrefix + "lb WHERE lbname='" + lbname+"'";
if (db.Get_DataTable().Rows.Count > 0)
return true;
else
return false;
}
/// <summary>
/// 在同类中排序
/// </summary>
/// <param name="id">lb.id</param>
/// <param name="isUp">1=升序,0=降序</param>
/// <returns>排序后的dataTable</returns>
public static void lbOrderUP(string id,bool isUp)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT id,lbid,parentid,orderid FROM "+com.tablePrefix+"lb WHERE id="+id;
DataTable dt = db.Get_DataTable();
string parentid = dt.Rows[0]["parentid"].ToString();
string curOrder = dt.Rows[0]["orderid"].ToString();
if (isUp)
{
db.sql = "SELECT TOP 1 id,lbid,parentid,orderid FROM " + com.tablePrefix + "lb WHERE parentid=" + parentid + " AND orderid<" + curOrder + " ORDER BY orderid DESC";
}
else
{
db.sql = "SELECT TOP 1 id,lbid,parentid,orderid FROM " + com.tablePrefix + "lb WHERE parentid=" + parentid + " AND orderid>" + curOrder + " ORDER BY orderid";
}
DataTable dt1 = db.Get_DataTable();
if (dt1.Rows.Count > 0)
{
string newOrder = dt1.Rows[0]["orderid"].ToString();
string otherId = dt1.Rows[0]["id"].ToString();
db.sql = "UPDATE "+com.tablePrefix+"lb SET orderid=" + newOrder + " WHERE id=" + id;
db.ExecSql();
db.sql = "UPDATE "+com.tablePrefix+"lb SET orderid=" + curOrder + " WHERE id=" + otherId;
db.ExecSql();
}
}
public static string MaxLbid()
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT ISNULL(Max(lbid),0)+1 AS lbid FROM " + com.tablePrefix + "lb";
DataTable dt = db.Get_DataTable();
return dt.Rows[0][0].ToString();
}
public static void Update(string id, string lbname,string orderid)
{
string sql = "UPDATE " + com.tablePrefix + "lb SET lbname='" + lbname + "',orderid="+orderid+" WHERE id=" + id;
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
db.ExcSql();
}
public static void del(string id)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "UPDATE dxlb SET isDeleted=1 WHERE id="+id;
db.ExecSql();
}
public bool login(string email, string pwd)
{
SQLHelper_ db = new SQLHelper_();
db.sql = "SELECT * FROM " + com.tablePrefix + "Members WHERE email='" + email + "' AND pwd='" + pwd + "'";
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
System.Web.HttpContext.Current.Session["username"] = dt.Rows[0]["username"].ToString();
return true;
}
else
{
return false;
}
}
// string sql = @"INSERT INTO [Members]
// ([username]
// ,[pwd]
// ,[email]
// ,sex
// ,[photo])
// VALUES
// (<username, varchar(50),>
// ,<pwd, varchar(100),>
// ,<email, varchar(100),>
// ,<sex, varchar(2),>
// ,<photo, varchar(500),>)";
public Member getMemberInfo(string email)
{
Member m = new Member();
string sql = "SELECT userid,username,email,sex FROM " + com.tablePrefix + "Members WHERE email='" + email + "'";
SQLHelper_ db = new SQLHelper_();
db.sql = sql;
DataTable dt = db.Get_DataTable();
if (dt.Rows.Count > 0)
{
m.userid = dt.Rows[0]["userid"].ToString();
m.username = dt.Rows[0]["username"].ToString();
m.email = dt.Rows[0]["email"].ToString();
m.sex = dt.Rows[0]["sex"].ToString();
return m;
}
else
{
return null;
}
}
