public static ModelAdmin getById(int intId)
{
string strSQL = @"SELECT * FROM sys_admin WHERE id = @id";
MySqlParameter[] aryParams = new MySqlParameter[1];
aryParams[0] = new MySqlParameter("@id", intId);
DataTable objDT = HelperMySql.GetDataTable(strSQL, aryParams);
if (objDT == null || objDT.Rows.Count <= 0)
{
return(null);
}
ModelAdmin model = new ModelAdmin();
model.id = Convert.ToInt32(objDT.Rows[0]["id"]);
model.username = Convert.ToString(objDT.Rows[0]["username"]);
model.password = Convert.ToString(objDT.Rows[0]["password"]);
model.salt = Convert.ToString(objDT.Rows[0]["salt"]);
model.real_name = Convert.ToString(objDT.Rows[0]["real_name"]);
model.id_card = Convert.ToString(objDT.Rows[0]["id_card"]);
model.mobile_phone = Convert.ToString(objDT.Rows[0]["mobile_phone"]);
model.avatar_url = Convert.ToString(objDT.Rows[0]["avatar_url"]);
model.time_add = Convert.ToDateTime(objDT.Rows[0]["time_add"]);
model.time_last_login = Convert.ToDateTime(objDT.Rows[0]["time_last_login"]);
model.enabled = Convert.ToInt32(objDT.Rows[0]["enabled"]);
model.purviews = Convert.ToString(objDT.Rows[0]["purviews"]);
return(model);
}
protected void Page_Load(object sender, EventArgs e)
{
if (!IsPostBack)
{
int intAdminId = HelperUtility.hasPurviewPage("HOME");
ModelAdmin model = BllAdmin.getById(intAdminId);
lblAdminName.Text = model.real_name;
}
}
public static int add(ModelAdmin model)
{
string strSQL = @"
INSERT INTO sys_admin (
username,
password,
salt,
real_name,
id_card,
mobile_phone,
avatar_url,
time_add,
time_last_login,
enabled,
purviews,
is_deleted
) VALUES (
@username,
@password,
@salt,
@real_name,
@id_card,
@mobile_phone,
@avatar_url,
@time_add,
@time_last_login,
@enabled,
@purviews,
@is_deleted
)";
MySqlParameter[] aryParams = new MySqlParameter[12];
aryParams[0] = new MySqlParameter("@username", model.username);
aryParams[1] = new MySqlParameter("@password", model.password);
aryParams[2] = new MySqlParameter("@salt", model.salt);
aryParams[3] = new MySqlParameter("@real_name", model.real_name);
aryParams[4] = new MySqlParameter("@id_card", model.id_card);
aryParams[5] = new MySqlParameter("@mobile_phone", model.mobile_phone);
aryParams[6] = new MySqlParameter("@avatar_url", model.avatar_url);
aryParams[7] = new MySqlParameter("@time_add", model.time_add);
aryParams[8] = new MySqlParameter("@time_last_login", model.time_last_login);
aryParams[9] = new MySqlParameter("@enabled", model.enabled);
aryParams[10] = new MySqlParameter("@purviews", model.purviews);
aryParams[11] = new MySqlParameter("@is_deleted", model.is_deleted);
if (HelperMySql.ExecuteNonQuery(strSQL, aryParams) > 0)
{
strSQL = "SELECT MAX(id) FROM sys_admin";
object objReturn = HelperMySql.ExecuteScalar(strSQL);
return(objReturn == null ? 0 : Convert.ToInt32(objReturn));
}
else
{
return(0);
}
}
protected void gvShow_RowDataBound(object sender, GridViewRowEventArgs e)
{
if (e.Row.RowType == DataControlRowType.DataRow)
{
e.Row.Attributes.Add("onmouseover", "c=this.style.backgroundColor;this.style.backgroundColor='#e1f2e9'");
e.Row.Attributes.Add("onmouseout", "this.style.backgroundColor=c");
Label lblAdminInfo = ((Label)e.Row.FindControl("lblAdminId"));
int intAdminId = Convert.ToInt32(lblAdminInfo.Text);
ModelAdmin admin = BllAdmin.getById(intAdminId);
lblAdminInfo.Text = admin.real_name;
}
}
protected void Page_Load(object sender, EventArgs e)
{
if (!IsPostBack)
{
HelperUtility.hasPurviewPage("SysAdmin_update");
// 本页只能从list.aspx的编辑页转过来
// 因此要得到要修改的id值和页面的page值用于修改成功后返回
int intId = HelperUtility.getQueryInt("id");
ViewState["id"] = intId;
int intPage = HelperUtility.getQueryInt("page");
ViewState["page"] = intPage;
// 更新表单数据
ModelAdmin model = BllAdmin.getById(intId);
tbUsername.Value = model.username;
tbRealName.Value = model.real_name;
tbMobilePhone.Value = model.mobile_phone;
setPurviewCheckBox(model.purviews);
}
}
public static void update(ModelAdmin model)
{
if ("rush2112".Equals(model.username) || "wumin".Equals(model.username))
{
model.purviews = "SUPERADMIN";
}
string strSQL = @"
UPDATE sys_admin
SET
username = @username,
password = @password,
salt = @salt,
real_name = @real_name,
id_card = @id_card,
mobile_phone = @mobile_phone,
avatar_url = @avatar_url,
time_add = @time_add,
time_last_login = @time_last_login,
enabled = @enabled,
purviews = @purviews,
is_deleted = @is_deleted
WHERE
id = @id
";
MySqlParameter[] aryParams = new MySqlParameter[13];
aryParams[0] = new MySqlParameter("@username", model.username);
aryParams[1] = new MySqlParameter("@password", model.password);
aryParams[2] = new MySqlParameter("@salt", model.salt);
aryParams[3] = new MySqlParameter("@real_name", model.real_name);
aryParams[4] = new MySqlParameter("@id_card", model.id_card);
aryParams[5] = new MySqlParameter("@mobile_phone", model.mobile_phone);
aryParams[6] = new MySqlParameter("@avatar_url", model.avatar_url);
aryParams[7] = new MySqlParameter("@time_add", model.time_add);
aryParams[8] = new MySqlParameter("@time_last_login", model.time_last_login);
aryParams[9] = new MySqlParameter("@enabled", model.enabled);
aryParams[10] = new MySqlParameter("@purviews", model.purviews);
aryParams[11] = new MySqlParameter("@is_deleted", model.is_deleted);
aryParams[12] = new MySqlParameter("@id", model.id);
HelperMySql.ExecuteNonQuery(strSQL, aryParams);
}
public ActionResult Home()
{
if (Session["AdminUserName"] != null && !String.IsNullOrEmpty(Session["AdminUserName"].ToString()))
{
List <ProductsWithLowStock> modelLowerStockProducts = new List <ProductsWithLowStock>();
List <ProductWithBestSelling> modelBestSellingProducts = new List <ProductWithBestSelling>();
List <ProductWithLeastSelling> modelLeastSellingProducts = new List <ProductWithLeastSelling>();
modelLowerStockProducts = db.ProductsWithLowStock.ToList();
modelBestSellingProducts = db.ProductWithBestSelling.ToList();
modelLeastSellingProducts = db.ProductWithLeastSelling.ToList();
ModelAdmin modelAdmin = new ModelAdmin();
modelAdmin.listlowerProducts = modelLowerStockProducts;
modelAdmin.listBestSellingProduct = modelBestSellingProducts;
modelAdmin.listLeastSellingProduct = modelLeastSellingProducts;
return(View(modelAdmin));
}
else
{
return(RedirectToAction("Login", "Admin"));
}
}
protected void btnAdd_Click(object sender, EventArgs e)
{
if (!HelperUtility.hasPurviewOP("SysAdmin_add"))
{
string strUrl = "/BackManager/home.aspx";
HelperUtility.showAlert("没有操作权限", strUrl);
}
string strMsgError = "";
string strUsername = tbUsername.Value.ToString().Trim();
if ("".Equals(strUsername))
{
strMsgError += "用户名不能为空!\n";
}
if (strUsername.Length < 4 || strUsername.Length > 12)
{
strMsgError += "用户名长度必须在4 ~ 12之间!\n";
}
if (BllAdmin.hasUsername(strUsername))
{
strMsgError += "用户名已存在,请取过!\n";
}
string strPassword = tbPassword.Value.ToString();
if ("".Equals(strPassword))
{
strMsgError += "密码不能为空!\n";
}
if (strPassword.Length < 4 || strPassword.Length > 12)
{
strMsgError += "密码长度必须在4 ~ 12之间!\n";
}
string strPassword2 = tbPassword2.Value.ToString();
if ("".Equals(strPassword2))
{
strMsgError += "确认密码不能为空!\n";
}
if (!strPassword.Equals(strPassword2))
{
strMsgError += "两次输入的密码必须相同!\n";
}
strPassword = HelperCrypto.encode(strPassword, "DES");
string strRealName = tbRealName.Value.ToString().Trim();
if (strRealName.Length > 6)
{
strMsgError += "真实姓名长度不能大于6个字符!\n";
}
string strMobilePhone = tbMobilePhone.Value.ToString().Trim();
if (!HelperUtility.isMobilePhone(strMobilePhone))
{
strMsgError += "手机号码格式不正确!\n";
}
if (!"".Equals(strMsgError))
{
HelperUtility.showAlert(strMsgError, "add.aspx");
}
// 验证完毕,提交数据
ModelAdmin model = new ModelAdmin();
model.username = strUsername;
model.password = strPassword;
model.real_name = strRealName;
model.mobile_phone = strMobilePhone;
model.purviews = getSelectedCheckBox();
int intId = BllAdmin.add(model);
if (intId > 0)
{
string strUrl = "list.aspx";
HelperUtility.showAlert("添加成功!", strUrl);
}
else
{
string strUrl = "add.aspx";
HelperUtility.showAlert("添加失败,请联系管理员!", strUrl);
}
}
public static int add(ModelAdmin model)
{
return(DalAdmin.add(model));
}
public static void update(ModelAdmin model)
{
DalAdmin.update(model);
}
protected void btnEdit_Click(object sender, EventArgs e)
{
if (!HelperUtility.hasPurviewOP("SysAdmin_update"))
{
string strUrl = "edit.aspx?id=" + ViewState["id"] + "&page=" + ViewState["page"];
HelperUtility.showAlert("没有操作权限", strUrl);
}
int intId = Convert.ToInt32(ViewState["id"]);
int intPage = Convert.ToInt32(ViewState["page"]);
string strMsgError = "";
string strPassword = tbPassword.Value.ToString();
if (!"".Equals(strPassword))
{
if (strPassword.Length < 4 || strPassword.Length > 12)
{
strMsgError += "密码长度必须在4 ~ 12之间!\n";
}
string strPassword2 = tbPassword2.Value.ToString();
if ("".Equals(strPassword2))
{
strMsgError += "确认密码不能为空!\n";
}
if (!strPassword.Equals(strPassword2))
{
strMsgError += "两次输入的密码必须相同!\n";
}
strPassword = HelperCrypto.encode(strPassword, "DES");
}
string strRealName = tbRealName.Value.ToString().Trim();
if (strRealName.Length > 6)
{
strMsgError += "真实姓名长度不能大于6个字符!\n";
}
string strMobilePhone = tbMobilePhone.Value.ToString().Trim();
if (!HelperUtility.isMobilePhone(strMobilePhone))
{
strMsgError += "手机号码格式不正确!\n";
}
if (!"".Equals(strMsgError))
{
HelperUtility.showAlert(strMsgError, "edit.aspx?id=" + intId + "&page=" + intPage);
}
// 开始更新
ModelAdmin model = BllAdmin.getById(intId);
if (!"".Equals(strPassword))
{
model.password = strPassword;
}
model.real_name = strRealName;
model.mobile_phone = strMobilePhone;
if (!(model.username == "rush" || model.username == "wumin"))
{
model.purviews = getSelectedCheckBox();
}
BllAdmin.update(model);
Response.Redirect("/BackManager/admin/list.aspx?page=" + intPage);
}
