protected void ModifyMyPassword_Click(object sender, EventArgs e)
{
if (OldPsd_TextBox.Text == "" || NewPsd_TextBox.Text == "")
{
JScript.Alert("输入不完整,请检查后再提交。", this);
return;
}
if (NewPsd_TextBox.Text != NewPsdRe_TextBox.Text)
{
JScript.Alert("两次密码输入不同,请重新输入。", this);
return;
}
if (NewPsd_TextBox.Text.Length < 6)
{
JScript.Alert("密码至少应为6个字符。", this);
return;
}
string md5Password = MD5Provider.Hash(OldPsd_TextBox.Text);
string strConnection = ConfigurationManager.ConnectionStrings["AccessConnectionString"].ConnectionString;
OleDbConnection objConnection = new OleDbConnection(strConnection);
objConnection.Open();
using (objConnection)
{
string strSQL = "SELECT Top 1 * FROM YHTable WHERE YHName = @userName";
OleDbCommand command = new OleDbCommand(strSQL, objConnection);
command.Parameters.Add("@userName", OleDbType.VarChar).Value = Session["userName"].ToString();
OleDbDataAdapter adapter = new OleDbDataAdapter(command);
DataTable dt = new DataTable();
adapter.Fill(dt);
if (dt.Rows.Count == 1)
{
if (dt.Rows[0]["YHPassword"].ToString() == md5Password)
{
strSQL = "UPDATE YHTable SET YHPassword=@psw WHERE 编号=" + dt.Rows[0]["编号"].ToString();
command = new OleDbCommand(strSQL, objConnection);
command.Parameters.Add("@psw", OleDbType.VarChar).Value = MD5Provider.Hash(NewPsd_TextBox.Text);
command.ExecuteNonQuery();
MyBasePage.writeLog(Session["userName"].ToString(), "修改密码成功");
JScript.Alert("密码修改成功", this);
}
else
{
MyBasePage.writeLog(Session["userName"].ToString(), "修改密码错误:旧密码输入错误");
JScript.Alert("密码修改失败:旧密码输入错误", this);
}
}
else
{
MyBasePage.writeLog(Session["userName"].ToString(), "修改密码错误:无法在数据库中检索到用户原始信息");
MyBasePage.logout(this);
JScript.AlertAndRedirect("系统出现错误,请重新登录后再试", "../Deafult.aspx", this);
}
}
}
protected void logoutButton_Click1(object sender, EventArgs e)
{
MyBasePage.logout(this.Page);
JScript.AlertAndRedirect("您已安全退出管理后台", "../Default.aspx", this.Page);
}
