public static User Get(string where)
{
var sql = "select * from User where 1=1";
if (!string.IsNullOrEmpty(where))
{
sql += where;
}
var ds = AccessDbUtil.ExecuteQuery(sql);
return(RowToEntity(ds.Tables["ds"].Rows[0]));
}
public static User Login(string account, string password, ref string strResult)
{
strResult = "1";
if (string.IsNullOrEmpty(account))
{
strResult = "账号不能为空";
return(null);
}
if (string.IsNullOrEmpty(password))
{
strResult = "密码不能为空";
return(null);
}
var sql = "select * from [user] where account=?";
var parameters = new[]
{
new OleDbParameter("@account", OleDbType.VarChar, 50)
{
Value = account
}
};
var ds = AccessDbUtil.ExecuteQuery(sql, parameters);
if (ds.Tables[0].Rows.Count == 0)
{
strResult = "账号不存在!";
return(null);
}
var user = RowToEntity(ds.Tables[0].Rows[0]);
password = Encrypt.Md5By32(password);
if (user.Password != password)
{
strResult = "密码不正确!";
return(null);
}
return(user);
}
