Esempio n. 1
0
    protected void BtnLogin_Click(object sender, EventArgs e)
    {
        if (TextBoxN.Text.Length <= 0)
        {
            Response.Write("<script language='javascript'>alert('用户名不能为空');</script>");
            return;
        }
        else if (TextBoxP.Text.Length < 6)
        {
            Response.Write("<script language='javascript'>alert('密码错误');</script>");
            return;
        }
        SqlConnection con = UserSqlConnect.createConnection();

        con.Open();
        SqlCommand    cmd    = new SqlCommand("select * from [user] where name='" + TextBoxN.Text + "' and pw='" + TextBoxP.Text + "'", con);
        SqlDataReader reader = cmd.ExecuteReader();

        if (reader.Read())
        {
            Session["id"]      = reader["id"].ToString();
            Session["isLogin"] = "******";
            Session["isAdmin"] = reader["authority"].ToString();
            Response.Redirect("MainWeb.aspx");
        }
        else
        {
            Response.Write("<script language='javascript'>alert('用户名或密码错误');</script>");
        }
        reader.Close();
        con.Close();
    }
Esempio n. 2
0
    private void CreateBill(long userid, string strName, long screeningid, string strLocation, string strTime, string strSeats, float fCost)
    {
        SqlConnection con = UserSqlConnect.createConnection();

        con.Open();
        SqlCommand cmd = new SqlCommand("insert into [bill](owner,name,screeningid,location,time,seats,cost) values(" +
                                        userid + ",'" +
                                        strName + "'," +
                                        screeningid + ",'" +
                                        strLocation + "','" +
                                        strTime + "','" +
                                        strSeats + "'," +
                                        fCost + ")", con);

        cmd.ExecuteNonQuery();
    }
Esempio n. 3
0
    private string getUserNameById(string id)
    {
        string        name = null;
        SqlConnection con  = UserSqlConnect.createConnection();

        con.Open();
        SqlCommand    cmd    = new SqlCommand("select name from [user] where id='" + id + "'", con);
        SqlDataReader reader = cmd.ExecuteReader();

        if (reader.Read())
        {
            name = reader["name"].ToString();
        }
        con.Close();
        return(name);
    }
Esempio n. 4
0
    private bool LoadBillInfo()
    {
        SqlConnection con = UserSqlConnect.createConnection();

        con.Open();

        SqlCommand    cmd    = new SqlCommand("select * from bill where owner=" + Session["id"].ToString(), con);
        SqlDataReader reader = cmd.ExecuteReader();

        while (reader.Read())
        {
            BillInfo Info = new BillInfo();
            Info.Info_C       = new ConcertInfo();
            Info.Info_S       = new ScreeningsInfo();
            Info.Info_S.Seats = new List <SeatInfo>();

            Info.BillID             = long.Parse(reader["id"].ToString());
            Info.Cost               = float.Parse(reader["cost"].ToString());
            Info.Info_C.Name        = reader["name"].ToString();
            Info.Info_S.ScreeningID = long.Parse(reader["screeningid"].ToString());
            Info.Info_S.Location    = reader["location"].ToString();
            Info.Info_S.Time        = reader["time"].ToString();

            List <string> SeatBuffer = new List <string>(reader["seats"].ToString().Trim().Split(' '));

            SeatBuffer.ForEach
            (
                delegate(string PositionBuffer)
            {
                SeatInfo SInfo = new SeatInfo();
                SInfo.Position = int.Parse(PositionBuffer);
                Info.Info_S.Seats.Add(SInfo);
            }
            );

            BillStock.Add(Info);
        }
        con.Close();

        if (BillStock.Count <= 0)
        {
            return(false);
        }

        return(true);
    }
Esempio n. 5
0
    private void CancelBill(string message)
    {
        long id = long.Parse(message.Split('#')[0]);

        SqlConnection con = UserSqlConnect.createConnection();

        con.Open();
        SqlCommand cmd = new SqlCommand("delete from bill where id=" + id, con);

        cmd.ExecuteNonQuery();
        con.Close();

        con = InfoSqlConnect.createConnection();
        con.Open();

        long          sid         = long.Parse(message.Split('#')[1]);
        List <string> SeatsBuffer = new List <string>(message.Split('#')[2].Trim().Split(' '));

        SeatsBuffer.ForEach(strPosition => { cmd = new SqlCommand("update seats set avaliable='1' where avaliable='0' and screeningid=" + sid + "and position=" + strPosition, con); cmd.ExecuteNonQuery(); });
        con.Close();
    }
Esempio n. 6
0
    protected void ButtonReg_Click(object sender, EventArgs e)
    {
        if (TextBoxN.Text.Length < 3)
        {
            Response.Write("<script language='javascript'>alert('用户名不能小于3位');</script>");
            return;
        }
        else if (TextBoxP.Text.Length < 6)
        {
            Response.Write("<script language='javascript'>alert('密码不能小于6位');</script>");
            return;
        }
        else if (TextBoxP.Text != TextBoxPR.Text)
        {
            Response.Write("<script language='javascript'>alert('两次密码不一致');</script>");
            return;
        }

        SqlConnection con = UserSqlConnect.createConnection();

        con.Open();
        SqlCommand cmd = new SqlCommand("insert into [user](name,pw) values ('" + TextBoxN.Text + "','" + TextBoxP.Text + "')", con);

        try
        {
            int re = cmd.ExecuteNonQuery();
            con.Close();
            if (re > 0)
            {
                Response.Write("<script language='javascript'>alert('欢迎加入!');self.location='MainWeb.aspx'</script>");
                return;
            }
        }
        catch
        {
        }
        Response.Write("<script language='javascript'>alert('用户名已存在');</script>");
    }