protected void btnDyeAddModify_Click(object sender, EventArgs e) { if (btnDyeAddModify.Text.Equals("修改")) { strSqlCmd = "update dye set dyeName = '" + txtDyeName.Text + "',dyeColor = '" + txtDyeColor.Text + "',dyeStock = '" + txtDyeStock.Text + "' where dyeID = '" + lblDyeID.Text + "'"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); } else if (btnDyeAddModify.Text.Equals("添加")) { strSqlCmd = "insert into dye(dyeName,dyeColor,dyeStock) values('" + txtDyeName.Text + "','" + txtDyeColor.Text + "','" + txtDyeStock.Text + "')"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); } Page_Load(sender, e); txtDyeName.Text = ""; txtDyeColor.Text = ""; txtDyeStock.Text = ""; }
protected void btnLinkDelete_Click(object sender, EventArgs e) { Button btnLinkDelete = (Button)sender; strSqlCmd = "delete from links where linkID = '" + btnLinkDelete.CommandArgument.ToString() + "'"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); this.Page_Load(sender, e); }
protected void btnUserDelete_Click(object sender, EventArgs e) { Button btnUserID = (Button)sender; string strSqlCmd = "delete from users where userID = '" + btnUserID.CommandArgument.ToString() + "'"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); Page_Load(sender, e); }
protected void btnConsultAnswerSubmit_Click(object sender, EventArgs e) { strSqlCmd = "update consult set consultAnswer = '" + txtConsultAnswer.Text + "',consultAnswered = '1' where consultID = '" + lblConsultID.Text + "'"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); Response.Write("<script>alert('回答成功')</script>"); Page_Load(sender, e); }
protected void btnConsultDelete_Click(object sender, EventArgs e) { Button btnConsultID = (Button)sender; string strSqlCmd = "delete from consult where consultID = '" + btnConsultID.CommandArgument.ToString() + "'"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); Response.Write("<script>alert('删除成功')</script>"); Page_Load(sender, e); }
protected void btnModify_Click(object sender, EventArgs e) { sqlCnn = DatabaseOperating.creatDBConnect(); string strResult; if (txtUserOldPassword.Text.ToString().Equals("")) { lblErrorMessage.Text = "请输入旧密码。"; } else { try { string strSqlCmdLoginCheck = "select count(*) from users where userName = '******'and userPassword = '******'"; SqlCommand sqlCmd = new SqlCommand(strSqlCmdLoginCheck, sqlCnn); strResult = sqlCmd.ExecuteScalar().ToString(); if (strResult.Equals("1")) { if (txtUserNewPassword.Text.Equals("") || txtUserNewPasswordConfig.Text.Equals("")) { lblErrorMessage.Text = "新密码和新密码确认不能为空。"; } else if (!txtUserNewPassword.Text.Equals(txtUserNewPasswordConfig.Text)) { lblErrorMessage.Text = "两次输入的新密码不一致。"; } else { string strSqlCmd = "update users set userPassword = '******' ,userZone = '" + DrpDwnLstZone.SelectedItem.Text + " ' where userName = '******'"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); Response.Write("<script language=javascript>alert('恭喜您,修改成功!')</script>"); Response.Write("<script language=javascript>window.location.href='Login_Register_Done.aspx'</script>"); } } else { lblErrorMessage.Text = "旧密码错误,请重新输入。"; } } catch {} } }
protected void btnLinkModifyAddSubmit_Click(object sender, EventArgs e) { if (btnLinkModifyAddSubmit.Text.Equals("修改")) { strSqlCmd = "update links set linkName = '" + txtLinkName.Text + "', linkURL = '" + txtLinkURL.Text + "', linkContent = '" + txtLinkContent.Text + "' where linkID = '" + lblLinkID.Text + "'"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); lblLinkID.Text = ""; txtLinkURL.Text = "http://"; txtLinkName.Text = ""; txtLinkContent.Text = ""; this.Page_Load(sender, e); } else { SqlConnection sqlCnn = DatabaseOperating.creatDBConnect(); SqlCommand sqlCmd = new SqlCommand("linkInsert", sqlCnn); sqlCmd.CommandType = CommandType.StoredProcedure; sqlCmd.Parameters.Add("@linkURl", SqlDbType.VarChar, 200); sqlCmd.Parameters["@linkURL"].Value = txtLinkURL.Text; sqlCmd.Parameters.Add("@linkName", SqlDbType.VarChar, 20); sqlCmd.Parameters["@linkName"].Value = txtLinkName.Text; sqlCmd.Parameters.Add("@linkContent", SqlDbType.VarChar, 200); sqlCmd.Parameters["@linkContent"].Value = txtLinkContent.Text; sqlCmd.ExecuteNonQuery(); sqlCnn.Close(); //strSqlCmd = "insert into links (linkURL,linkName,linkContent) values ('" + txtLinkURL.Text + "','" + txtLinkName.Text + "','" + txtLinkContent.Text + "')"; //DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); Response.Write("<script>alert('添加成功')</script>"); lblLinkID.Text = ""; txtLinkURL.Text = "http://"; txtLinkName.Text = ""; txtLinkContent.Text = ""; this.Page_Load(sender, e); } Response.Write("<script>alert('操作成功')</script>"); }
protected void btnUserRightModify_Click(object sender, EventArgs e) { Button btnUserRightModify = (Button)sender; string strUserID = btnUserRightModify.CommandName.ToString(); string strUserRight = btnUserRightModify.CommandArgument.ToString(); if (strUserRight.Equals("用户")) { strSqlCmd = "update users set userRight = '1' where userID = '" + strUserID + "'"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); Response.Write("<script language='javascript'>alert('修改成功!')</script>"); Page_Load(sender, e); } else { Response.Write("<script language='javascript'>alert('此用户已为管理员')</script>"); } }
protected void btnUserAdd_Click(object sender, EventArgs e) { strSqlCmd = "insert into users(userName, userPassword, userZone, userEmail, userRegisterDate, userRight) values( " + "'" + txtUserName.Text.ToString() + "'" + "," + "'" + txtUserPassword.Text.ToString() + "'" + "," + "'" + DrpDwnLstUserZone.SelectedValue.ToString() + "'" + "," + "'" + txtUserEmail.Text.ToString() + "'" + "," + "'" + DateTime.Today.ToShortDateString().ToString() + "'" + "," + "'" + drpDwnLstUserRight.SelectedValue.ToString() + "'" + ")"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); Response.Write(" <script language=\"javascript\"> alert(\"注册成功\")</script> "); }
protected void btnNewsModifyAddSubmit_Click(object sender, EventArgs e) { if (btnNewsModifyAddSubmit.Text.Equals("添加")) { strSqlCmd = "insert into news(newsTitle,newsDate,newsContent) values('" + txtNewsTitle.Text + "','" + DateTime.Today.ToShortDateString().ToString() + "','" + txtNewsContent.Text + "')"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); Response.Write("<script>alert('添加成功')</script>"); } else { strSqlCmd = "update news set newsTitle = '" + txtNewsTitle.Text + "',newsContent = '" + txtNewsContent.Text + "' where newsID = '" + lblNewsID.Text + "'"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); Response.Write("<script>alert('编辑成功')</script>"); } Page_Load(sender, e); }
protected void btnFertilizerAddModify_Click(object sender, EventArgs e) { string strFertilizerCompound; string strFertilizerOrganic; string strFertilizerAfter; if (radBtnFertilizerCompound0.Checked) { strFertilizerCompound = "0"; } else { strFertilizerCompound = "1"; } if (radBtnFertilizerOrganic0.Checked) { strFertilizerOrganic = "0"; } else { strFertilizerOrganic = "1"; } if (radBtnFertilizerAfter0.Checked) { strFertilizerAfter = "0"; } else { strFertilizerAfter = "1"; } if (btnFertilizerAddModify.Text.Equals("修改")) { strSqlCmd = "update fertilizer set fertilizerName = '" + txtFertilizerName.Text + "',fertilizerCompound = '" + strFertilizerCompound + "',fertilizerOrganic = '" + strFertilizerOrganic + "',fertilizerAfter = '" + strFertilizerAfter + "',fertilizerDilute = '" + txtFertilizerDilute.Text + "',fertilizerIngredient = '" + txtFertilizerIngredient.Text + "',fertilizerSoil = '" + drpDwnLstFertilizerSoil.SelectedValue + "',fertilizerFrequency = '" + txtFertilizerFrequency.Text + "',fertilizerStock = '" + txtFertilizerStock.Text + "' where fertilizerID = '" + lblFertilizerID.Text + "'"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); grdViwFertilizer.DataSource = DS; grdViwFertilizer.DataBind(); Response.Write("<script language=\"javascript\">alert('修改成功')</script>"); } else if (btnFertilizerAddModify.Text.Equals("添加")) { strSqlCmd = "insert into fertilizer(fertilizerName,fertilizerCompound,fertilizerOrganic,fertilizerAfter,fertilizerDilute,fertilizerIngredient,fertilizerSoil,fertilizerFrequency,fertilizerStock) values('" + txtFertilizerName.Text + "','" + strFertilizerCompound + "','" + strFertilizerOrganic + "','" + strFertilizerAfter + "','" + txtFertilizerDilute.Text + "','" + txtFertilizerIngredient.Text + "','" + drpDwnLstFertilizerSoil.SelectedValue + "','" + txtFertilizerFrequency.Text + "','" + txtFertilizerStock.Text + "')"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); grdViwFertilizer.DataSource = DS; grdViwFertilizer.DataBind(); Response.Write("<script language=\"javascript\">alert('添加成功')</script>"); } Page_Load(sender, e); }
protected void btnRegister_Click(object sender, EventArgs e) { SqlConnection sqlCnn = DatabaseOperating.creatDBConnect(); Regex regUserName = new Regex(@"^\w+$"); // 只能输入由数字、26个英文字母或者下划线组成的字符串 Regex regUserpassword = new Regex(@"^[a-zA-Z]\w{5,17}$"); // 以字母开头,长度在6~18之间,只能包含字符、数字和下划线 Regex regMail = new Regex(@"\w+([-+.]\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*"); // 验证Email地址格式 strSqlCmd = "select count(*) from users where userName = '******'"; // 验证是否已存在此用户 sqlCmd = new SqlCommand(strSqlCmd, sqlCnn); string strResultUserNameCheck = sqlCmd.ExecuteScalar().ToString(); strSqlCmd = "select count(*) from users where userEmail = '" + txtUserEmail.Text.ToString() + "'"; // 验证是否已有用户使用此邮箱 sqlCmd = new SqlCommand(strSqlCmd, sqlCnn); string strResultUserEmailCheck = sqlCmd.ExecuteScalar().ToString(); #region 验证注册信息 if (txtUserName.Text.Equals("")) { lblErrorMessage.Text = "用户名不能为空。"; } else if (!regUserName.IsMatch(txtUserName.Text.ToString())) { lblErrorMessage.Text = "用户名格式不正确。只能输入由数字、26个英文字母或者下划线组成的字符串"; } else if (strResultUserNameCheck == "1") { lblErrorMessage.Text = "此用户名已被注册,请您另择其他。"; } else if (txtUserPassword.Text.Equals("")) { lblErrorMessage.Text = "密码不能为空。"; } else if (!regUserpassword.IsMatch(txtUserPassword.Text.ToString())) { lblErrorMessage.Text = "密码格式不正确。只能以字母开头,长度在6~18之间,只能包含字符、数字和下划线"; } else if (txtUserPasswordConfig.Text.Equals("")) { lblErrorMessage.Text = "密码确认不能为空。"; } else if (!txtUserPassword.Text.ToString().Equals(txtUserPasswordConfig.Text.ToString())) { lblErrorMessage.Text = "两次输入的密码不一致,请重新输入。"; } else if (txtUserEmail.Text.Equals("")) { lblErrorMessage.Text = "邮件地址不能为空。"; } else if (!regMail.IsMatch(txtUserEmail.Text.ToString())) { lblErrorMessage.Text = "邮件格式不正确。"; } else if (strResultUserEmailCheck == "1") { lblErrorMessage.Text = "此邮箱已被注册,请您另择其他。"; } #endregion #region 添加新用户 else { strSqlCmd = "insert into users(userName, userPassword, userZone, userEmail, userRegisterDate, userRight) values( " + "'" + txtUserName.Text.ToString() + "'" + "," + "'" + txtUserPassword.Text.ToString() + "'" + "," + "'" + DrpDwnLstZone.SelectedItem.Text.ToString() + "'" + "," + "'" + txtUserEmail.Text.ToString() + "'" + "," + "'" + DateTime.Today.ToShortDateString().ToString() + "'" + "," + "'" + "0" + "'" + ")"; DatabaseOperating.sqlCmdInsertDeleteUpdate(strSqlCmd); string strUserID; strSqlCmd = "select userID from users where userName = '******'"; sqlDR = DatabaseOperating.sqlDataReaderRead(strSqlCmd); strUserID = sqlDR["userID"].ToString(); Session["userName"] = txtUserName.Text; Session["userRight"] = "0"; Session["userID"] = strUserID; Response.Write(" <script language=\"javascript\"> alert(\"注册成功\");window.location.href='Login_Register_Done.aspx'</script> "); } #endregion sqlCnn.Close(); }