protected void Button1_Click1(object sender, EventArgs e) { if (Page.IsValid) { string name, realName, sex, question, answer, email; //定义变量 name = Session["userName"].ToString(); //将Session["userName"]里的内容传给name realName = txtTrueName.Text.Trim(); //将真实姓名传给变量realname sex = lstSex.SelectedItem.Text.Trim(); question = lstQuestion.SelectedItem.Text.Trim(); answer = txtAnswer.Text.Trim(); email = txtEmail.Text.Trim(); string sql = @"UPDATE Users SET trueName=@trueName,sex=@sex," + "question=@question,answer=@answer,email=@email WHERE userName='******'"; //定义SQL语句根据用户名修改其他信息 SqlParameter paramsTrueName = new SqlParameter("@truename", txtTrueName.Text); //将键盘输入的内容传给变量 SqlParameter paramsSex = new SqlParameter("@sex", lstSex.SelectedItem.Text); SqlParameter paramsEmail = new SqlParameter("@email", txtEmail.Text); SqlParameter paramsQuestion = new SqlParameter("@question", lstQuestion.SelectedItem.Text); SqlParameter paramsAnswer = new SqlParameter("@answer", txtAnswer.Text); SqlParameter[] paramsValue = new SqlParameter[] { paramsTrueName, paramsSex, paramsEmail, paramsQuestion, paramsAnswer }; int ret = DBHelper.execSql(sql, paramsValue); //调用 DBHelper里的execSql方法,然后传入SQL语句和数组值 if (ret > 0) //如果结果大于0 { Response.Redirect("index.aspx"); //跳转登录页面 } else { Response.Write("<script>alert('修改失败,请重试!')</script>");//弹出提示信息 } } }
protected void Button1_Click1(object sender, EventArgs e) { string sql1 = "select count(*) from users where username=@username "; //执行查询语句,查看用户名是否存在 SqlParameter paramsUserName1 = new SqlParameter("@username", txtUserName.Text); //获取从键盘上输入的值 SqlParameter[] paramsValue1 = new SqlParameter[] { paramsUserName1 }; //定义一个 SqlParameter[] paramsValue1类型的数组,初始化 int Ret = DBHelper.execScalar(sql1, paramsValue1); //调用 DBHelper里的execScalar方法,然后传入SQL语句和数组值 if (Ret > 0) //如果查询结果大于0 { Response.Write("<script>alert('用户名已存在!')</script>"); //输出用户名已存在 return; //返回 } string sql = "insert into users (username,pwd,truename,sex,email,question,answer)values (@username,@pwd,@truename,@sex,@email,@question,@answer)"; //执行一条插入语句,用来把键盘输入的值插入到数据库中 SqlParameter paramsUserName = new SqlParameter("@username", txtUserName.Text); //将键盘输入的内容传给变量 SqlParameter paramsPWD = new SqlParameter("@pwd", txtPWD.Text); SqlParameter paramsTrueName = new SqlParameter("@truename", txtTrueName.Text); SqlParameter paramsSex = new SqlParameter("@sex", lstSex.SelectedItem.Text); SqlParameter paramsEmail = new SqlParameter("@email", txtEmail.Text); SqlParameter paramsQuestion = new SqlParameter("@question", lstQuestion.SelectedItem.Text); SqlParameter paramsAnswer = new SqlParameter("@answer", txtAnswer.Text); SqlParameter[] paramsValue = new SqlParameter[] { paramsUserName, paramsPWD, paramsTrueName, paramsSex, paramsEmail, paramsQuestion, paramsAnswer }; //将数组初始化 int ret = DBHelper.execSql(sql, paramsValue); //调用 DBHelper里的execScalar方法,然后传入SQL语句和数组值 if (ret > 0) //如果查询结果大于0 { Response.Redirect("index.aspx"); //返回登录界面 } else { Response.Write("<script>alert('输入重复,请修改!')</script>");//重新输入 } }