protected void btnsave_ServerClick(object sender, EventArgs e)
{
ClNews cl = new ClNews();
cl.Comment = txtcontent.Value;
cl.RegUser = Convert.ToInt32(CSharp.PublicFunction.GetUserID());
cl.NewID = Convert.ToInt32(lblNewsID.Text);
int i = 0;
if (lblNewsID.Text == "0")
{
i = NewsClass.insert(cl);
}
else
{
i = NewsClass.Update(cl);
}
if (i == 0)
{
TerraficPlanBLL.Utility.ShowMsg(Page, ProPertyData.MsgType.warning, "خطا در ثبت");
}
else
{
TerraficPlanBLL.Utility.ShowMsg(Page, ProPertyData.MsgType.General_Success, "درج انجام شد");
}
}
protected void Page_Load(object sender, EventArgs e)
{
if (!Page.IsPostBack)
{
ClNews cl = new ClNews();
DataSet ds = NewsClass.GetList(cl);
lblnews.Text = ds.Tables[0].Rows[0]["CommentClear"].ToString();
ds.Dispose();
}
}
private void BindNews()
{
ClNews cl = new ClNews();
DataSet ds = NewsClass.GetList(cl);
if (ds.Tables[0].Rows.Count > 0)
{
DataRow DR = ds.Tables[0].Rows[0];
txtcontent.Value = DR["Comment"].ToString().Replace("<_", "<").Replace("_>", ">");
lblNewsID.Text = DR["NewID"].ToString();
}
}
//---------------------------------------------------------------------------------------------------------
public static DataSet GetList(ClNews c)
{
SqlCommand cmd = new SqlCommand("PRC_News_GetList", cnn);
cmd.CommandType = System.Data.CommandType.StoredProcedure;
cmd.Parameters.Add(new SqlParameter("UserIDLog", SqlDbType.NVarChar)).Value = CSharp.PublicFunction.GetUserID();
cmd.Parameters.Add(new SqlParameter("IpLog", SqlDbType.NVarChar)).Value = CSharp.PublicFunction.GetIPAddress();
cmd.Parameters.Add(new SqlParameter("OSLog", SqlDbType.NVarChar)).Value = CSharp.PublicFunction.GetOS();
cmd.Parameters.Add(new SqlParameter("OSVerLog", SqlDbType.NVarChar)).Value = CSharp.PublicFunction.GetBrowser() + CSharp.PublicFunction.GetBrowserVersion();
cmd.Parameters.Add(new SqlParameter("URLLog", SqlDbType.NVarChar)).Value = CSharp.PublicFunction.GetURL();
cmd.Parameters.Add(new SqlParameter("NewID", SqlDbType.Int)).Value = Securenamespace.SecureData.CheckSecurity(c.NewID);
cmd.Parameters.Add(new SqlParameter("ForCatalogID", SqlDbType.Int)).Value = Securenamespace.SecureData.CheckSecurity(c.ForCatalogID);
cmd.Parameters.Add(new SqlParameter("Title", SqlDbType.NVarChar)).Value = Securenamespace.SecureData.CheckSecurity(c.Title);
cmd.Parameters.Add(new SqlParameter("Comment", SqlDbType.NVarChar)).Value = Securenamespace.SecureData.CheckSecurity(c.Comment);
cmd.Parameters.Add(new SqlParameter("RegDate", SqlDbType.NVarChar)).Value = Securenamespace.SecureData.CheckSecurity(c.RegDate);
cmd.Parameters.Add(new SqlParameter("RegUser", SqlDbType.Int)).Value = Securenamespace.SecureData.CheckSecurity(c.RegUser);
SqlParameter prmResult = new SqlParameter("Result", SqlDbType.Int);
prmResult.Direction = ParameterDirection.Output;
cmd.Parameters.Add(prmResult);
DataSet ds = new DataSet();
SqlDataAdapter da = new SqlDataAdapter(cmd);
try
{
cnn.Open();
da.Fill(ds);
return(ds);
}
catch (Exception ex)
{
return(null);
}
finally
{
cnn.Close();
}
}
public static int insert(ClNews c)
{
SqlCommand cmd = new SqlCommand("PRC_News_Insert", cnn);
cmd.CommandType = System.Data.CommandType.StoredProcedure;
cmd.Parameters.Add(new SqlParameter("UserIDLog", SqlDbType.NVarChar)).Value = CSharp.PublicFunction.GetUserID();
cmd.Parameters.Add(new SqlParameter("IpLog", SqlDbType.NVarChar)).Value = CSharp.PublicFunction.GetIPAddress();
cmd.Parameters.Add(new SqlParameter("OSLog", SqlDbType.NVarChar)).Value = CSharp.PublicFunction.GetOS();
cmd.Parameters.Add(new SqlParameter("OSVerLog", SqlDbType.NVarChar)).Value = CSharp.PublicFunction.GetBrowser() + CSharp.PublicFunction.GetBrowserVersion();
cmd.Parameters.Add(new SqlParameter("URLLog", SqlDbType.NVarChar)).Value = CSharp.PublicFunction.GetURL();
cmd.Parameters.Add(new SqlParameter("ForCatalogID", SqlDbType.Int)).Value = Securenamespace.SecureData.CheckSecurity(c.ForCatalogID);
cmd.Parameters.Add(new SqlParameter("Title", SqlDbType.NVarChar)).Value = Securenamespace.SecureData.CheckSecurity(c.Title);
cmd.Parameters.Add(new SqlParameter("Comment", SqlDbType.NVarChar)).Value = Securenamespace.SecureData.CheckSecurity(c.Comment);
cmd.Parameters.Add(new SqlParameter("RegDate", SqlDbType.NVarChar)).Value = Securenamespace.SecureData.CheckSecurity(c.RegDate);
cmd.Parameters.Add(new SqlParameter("RegUser", SqlDbType.Int)).Value = Securenamespace.SecureData.CheckSecurity(c.RegUser);
SqlParameter prmResult = new SqlParameter("Result", SqlDbType.Int);
prmResult.Direction = ParameterDirection.Output;
cmd.Parameters.Add(prmResult);
try
{
cnn.Open();
cmd.ExecuteNonQuery();
return(Convert.ToInt32(prmResult.Value));
}
catch (Exception ex)
{
return(0);
}
finally
{
cnn.Close();
}
}
