/// <summary>
/// 添加用户
/// </summary>
/// <param name="name">Name</param>
/// <param name="pass">Pass</param>
/// <param name="question">Question</param>
/// <param name="answer">Answer</param>
/// <returns>bool</returns>
public static bool AddCustomer(string name, string pass, string question, string answer)
{
try
{
string sql = "insert into tb_customer(customerName,customerPass,customerRegDate,customerQuestion,customerAnswer) values(?name,?pass,now(),?question,?answer);";
MySqlParameter[] para = new MySqlParameter[4];
para[0] = new MySqlParameter("?name", name);
para[1] = new MySqlParameter("?pass", DAL_Safety.GetMD5(pass));
para[2] = new MySqlParameter("?question", question);
para[3] = new MySqlParameter("?answer", DAL_Safety.EncodeBase64(answer));
int ret = DAL_MysqlHelper.ExecuteNonQuery(sql, para);
if (ret == 1)
{
return(true);
}
else
{
return(false);
}
}
catch (Exception e)
{
throw e;
}
}
/// <summary>
/// 判断教师用户是否存在。
/// </summary>
/// <param name="number">用户名</param>
/// <param name="password">密码</param>
/// <returns></returns>
public static bool teacherExits(string number, string password)
{
password = DAL_Safety.getMD5(password);
object obj = null;
try
{
string sql = "select username from teacher where username=?1 and password=?2;";
MySqlParameter[] para = new MySqlParameter[2];
para[0] = new MySqlParameter("?1", number);
para[1] = new MySqlParameter("?2", password);
obj = DAL_MysqlHelper.ExecuteScalar(sql, para);
}
catch (Exception e)
{
LogWriter.writeLine(@"C:\WEB_ASP\logs\DAL.log", "studentExits:" + e.Message);
return(false);
}
if (Equals(obj, null))
{
return(false);
}
else
{
return(true);
}
}
/// <summary>
/// 修改一个学生信息(包括密码、年龄、年纪、性别、专业)。
/// </summary>
/// <param name="student">修改后的学生信息</param>
/// <returns></returns>
public static bool modifyStudent(Student student)
{
string username = student.username;
string password = student.password;
if (password.Length != 0)
{
password = DAL_Safety.getMD5(password);
}
string age = student.age;
string grade = student.grade;
string sex = student.sex;
string major = student.major;
try
{
string sql = "";
int res = 0;
if (password.Length != 0)
{
sql = "update users set password=?1, grade=?2, age=?3, sex=?4, major=?5 where username=?6;";
MySqlParameter[] para = new MySqlParameter[6];
para[0] = new MySqlParameter("?1", password);
para[1] = new MySqlParameter("?2", grade);
para[2] = new MySqlParameter("?3", age);
para[3] = new MySqlParameter("?4", sex);
para[4] = new MySqlParameter("?5", major);
para[5] = new MySqlParameter("?6", username);
res = DAL_MysqlHelper.ExecuteNonQuery(sql, para);
}
else
{
sql = "update users set grade=?1, age=?2, sex=?3, major=?4 where username=?5;";
MySqlParameter[] para = new MySqlParameter[5];
para[0] = new MySqlParameter("?1", grade);
para[1] = new MySqlParameter("?2", age);
para[2] = new MySqlParameter("?3", sex);
para[3] = new MySqlParameter("?4", major);
para[4] = new MySqlParameter("?5", username);
res = DAL_MysqlHelper.ExecuteNonQuery(sql, para);
}
if (res > 0)
{
return(true);
}
else
{
return(false);
}
}
catch (Exception e)
{
LogWriter.writeLine("DAL.log", "modifyStudent:" + e.Message);
return(false);
}
}
/// <summary>
/// 修改教师信息。
/// </summary>
/// <param name="teacher">修改后的教师实体信息</param>
/// <returns></returns>
public static bool modifyTeacher(Teacher teacher)
{
string username = teacher.username;
string password = teacher.password;
if (password.Length != 0)
{
password = DAL_Safety.getMD5(password);
}
string age = teacher.age;
string sex = teacher.sex;
try
{
string sql = "";
int res = 0;
if (password.Length != 0)
{
sql = "update teacher set password=?1, age=?2, sex=?3 where username=?4;";
MySqlParameter[] para = new MySqlParameter[4];
para[0] = new MySqlParameter("?1", password);
para[1] = new MySqlParameter("?2", age);
para[2] = new MySqlParameter("?3", username);
para[3] = new MySqlParameter("?4", username);
res = DAL_MysqlHelper.ExecuteNonQuery(sql, para);
}
else
{
sql = "update teacher set age=?1, sex=?2 where username=?3;";
MySqlParameter[] para = new MySqlParameter[3];
para[0] = new MySqlParameter("?1", age);
para[1] = new MySqlParameter("?2", sex);
para[2] = new MySqlParameter("?3", username);
res = DAL_MysqlHelper.ExecuteNonQuery(sql, para);
}
if (res > 0)
{
return(true);
}
else
{
return(false);
}
}
catch (Exception e)
{
LogWriter.writeLine("DAL.log", "modifyTeacher:" + e.Message);
return(false);
}
}
/// <summary>
/// 修改密码
/// </summary>
/// <param name="name">Name</param>
/// <param name="pass">Pass(新)</param>
/// <returns>bool</returns>
public static bool UpdatePassword(string name, string pass)
{
try
{
string sql = "update tb_customer set customerPass=?pass where customerName=?name;";
MySqlParameter[] para = new MySqlParameter[2];
para[0] = new MySqlParameter("?pass", DAL_Safety.GetMD5(pass));
para[1] = new MySqlParameter("?name", name);
int ret = DAL_MysqlHelper.ExecuteNonQuery(sql, para);
if (ret == 1)
{
return(true);
}
else
{
return(false);
}
}
catch (Exception e)
{
throw e;
}
}
/// <summary>
/// 判断用户输入的密保问题是否正确
/// </summary>
/// <param name="name">Name</param>
/// <param name="answer">Answer(输入的答案)</param>
/// <returns>bool</returns>
public static bool QueryCustomerQuestionAnswerMathch(string name, string answer)
{
try
{
string sql = "select customerName from tb_customer where customerName=?name and customerAnswer=?answer;";
MySqlParameter[] para = new MySqlParameter[2];
para[0] = new MySqlParameter("?name", name);
para[1] = new MySqlParameter("?answer", DAL_Safety.EncodeBase64(answer));
Object obj = DAL_MysqlHelper.ExecuteScalar(sql, para);
if (Equals(obj, null))
{
return(false);
}
else
{
return(true);
}
}
catch (Exception e)
{
throw e;
}
}
/// <summary>
/// 查询用户是否存在(登录用)
/// </summary>
/// <param name="name">Name</param>
/// <param name="pass">Pass</param>
/// <returns>bool</returns>
public static bool QueryCustomerExists(string name, string pass)
{
try
{
string sql = "select customerName from tb_customer where customerName=?name and customerPass=?pass;";
MySqlParameter[] para = new MySqlParameter[2];
para[0] = new MySqlParameter("?name", name);
para[1] = new MySqlParameter("?pass", DAL_Safety.GetMD5(pass));
Object obj = DAL_MysqlHelper.ExecuteScalar(sql, para);
if (Equals(obj, null))
{
return(false);
}
else
{
return(true);
}
}
catch (Exception e)
{
throw e;
}
}
/// <summary>
/// 添加管理员
/// </summary>
/// <param name="name"></param>
/// <param name="pass"></param>
/// <returns>bool</returns>
public static bool AddManage(string name, string pass)
{
try
{
string sql = "insert into tb_manage(managerName,managerPWD) values(?name,?pass);";
MySqlParameter[] para = new MySqlParameter[2];
para[0] = new MySqlParameter("?name", name);
para[1] = new MySqlParameter("?pass", DAL_Safety.GetMD5(pass));
int ret = DAL_MysqlHelper.ExecuteNonQuery(sql, para);
if (ret == 1)
{
return(true);
}
else
{
return(false);
}
}
catch (Exception e)
{
throw e;
}
}
/// <summary>
/// 更新密保问题
/// </summary>
/// <param name="name">Name</param>
/// <param name="question">Question</param>
/// <param name="answer">Answer</param>
/// <returns>bool</returns>
public static bool UpdateQuestion(string name, string question, string answer)
{
try
{
string sql = "update tb_customer set customerQuestion=?question,customerAnswer=?answer where customerName=?name;";
MySqlParameter[] para = new MySqlParameter[3];
para[0] = new MySqlParameter("?question", question);
para[1] = new MySqlParameter("?answer", DAL_Safety.EncodeBase64(answer));
para[2] = new MySqlParameter("?name", name);
int ret = DAL_MysqlHelper.ExecuteNonQuery(sql, para);
if (ret == 1)
{
return(true);
}
else
{
return(false);
}
}
catch (Exception e)
{
throw e;
}
}
