private bool addNewRole() { string Name = Request.Form["roleName"]; string Description = Request.Form["roleDescription"]; string Selected = Request.Form["selectedFunction"]; string sqlCommand = "INSERT INTO role(Name,Description) VALUES(@name,@description)"; sqlOperation.AddParameterWithValue("@name", Name); sqlOperation.AddParameterWithValue("@description", Description); int success = sqlOperation.ExecuteNonQuery(sqlCommand); if (success > 0) { sqlCommand = "SELECT ID FROM role WHERE Name=@name"; string id = sqlOperation.ExecuteScalar(sqlCommand); sqlOperation.AddParameterWithValue("@RID", id); string[] select = Selected.Split(' '); for (int i = 0; i < select.Length; i++) { if (select[i] != "") { sqlCommand = "INSERT INTO function2role(Function_ID,Role_ID) VALUES(@FID,@RID)"; sqlOperation.AddParameterWithValue("@FID", select[i]); sqlOperation.ExecuteNonQuery(sqlCommand); } } return(true); } return(false); }
public DataSet Select(string state, string item) { string sqlCommand = "SELECT * FROM Equipment"; string addString = ""; if (state != "allEquipment") { int stateInt = int.Parse(state); addString += " WHERE State=@state"; sqlOperation.AddParameterWithValue("@state", stateInt); } if (item != "allItem") { if (addString == "") { addString += " WHERE TreatmentItem=@item"; } else { addString += " AND TreatmentItem=@item"; } sqlOperation.AddParameterWithValue("@item", item); } DataSet myds = sqlOperation.ExecuteDataSet(sqlCommand + addString, "item"); return(myds); }
/// <summary> /// 消息发布到数据库 /// </summary> /// <returns></returns> private Boolean AddRi() { string Enterprise = Request.Form["enterprise"]; string Year = Request.Form["year"]; string TechDevelopCost = Request.Form["techDevelopCost"]; string RdInvestment = Request.Form["RdInvestment"]; string RdOrgLevel = Request.Form["RdOrgLevel"]; string RderNum = Request.Form["RderNum"]; string RderSeniorNum = Request.Form["RderSeniorNum"]; string PatentFilingNum = Request.Form["patentFilingNum"]; string PatentLicNum = Request.Form["patentLicNum"]; //将信息写入数据库,并返回是否成功 string strSqlCommand = "INSERT INTO researchinvestment(enterprise,year,techDevelopCost,RdInvestment,RdOrgLevel,RderNum,RderSeniorNum,patentFilingNum,patentLicNum,Releasetime)" + "VALUES(@Enterprise,@Year,@TechDevelopCost,@RdInvestment,@RdOrgLevel,@RderNum,@RderSeniorNum,@PatentFilingNum,@PatentLicNum,@Releasetime)"; sqlOperation.AddParameterWithValue("@Enterprise", Enterprise); sqlOperation.AddParameterWithValue("@Year", Year); sqlOperation.AddParameterWithValue("@TechDevelopCost", TechDevelopCost); sqlOperation.AddParameterWithValue("@RdInvestment", RdInvestment); sqlOperation.AddParameterWithValue("@RdOrgLevel", RdOrgLevel); sqlOperation.AddParameterWithValue("@RderNum", RderNum); sqlOperation.AddParameterWithValue("@RderSeniorNum", RderSeniorNum); sqlOperation.AddParameterWithValue("@PatentFilingNum", PatentFilingNum); sqlOperation.AddParameterWithValue("@PatentLicNum", PatentLicNum); sqlOperation.AddParameterWithValue("@Releasetime", DateTime.Now); int intSuccess = sqlOperation.ExecuteNonQuery(strSqlCommand); return((intSuccess > 0) ? true : false); }
public DataSet Select(string activate, string office) { string sqlCommand = "SELECT * FROM user,user2role"; string addStr = ""; if (office != "allOffice") { addStr += " WHERE Office=@office"; sqlOperation.AddParameterWithValue("@office", office); } if (activate != "allNumber") { if (addStr == "") { addStr += " WHERE Activate=@activate"; } else { addStr += " AND Activate=@activate"; } sqlOperation.AddParameterWithValue("@activate", int.Parse(activate)); } if (addStr == "") { addStr += " WHERE user.ID=user2role.User_ID"; } else { addStr += " AND user.ID=user2role.User_ID"; } sqlCommand += addStr; DataSet myds = sqlOperation.ExecuteDataSet(sqlCommand, "user"); return(myds); }
/// <summary> /// 向数据库记录修改的角色。 /// </summary> private void recordNewRole() { string newRoles = Request.Form["updateRoles"]; string [] roles = newRoles.Split(' '); string Number = Request.Form["userNumber"]; string sqlCommand = "DELETE FROM user2role WHERE User_ID=(SELECT ID FROM user WHERE user.Number=@number)"; sqlOperation.AddParameterWithValue("@number", Number); sqlOperation.ExecuteNonQuery(sqlCommand); string userID = sqlOperation.ExecuteScalar("SELECT ID FROM user WHERE user.Number=@number"); sqlOperation.AddParameterWithValue("@userID", userID); for (int i = 0; i < roles.Length; i++) { if (roles[i] != "") { sqlCommand = "SELECT ID FROM role WHERE Name=@name"; sqlOperation.AddParameterWithValue("@name", roles[i]); string roleID = sqlOperation.ExecuteScalar(sqlCommand); sqlCommand = "INSERT INTO user2role(User_ID,Role_ID) VALUES(@userID,@roleID)"; sqlOperation.AddParameterWithValue("@roleID", roleID); sqlOperation.ExecuteNonQuery(sqlCommand); } } }
public void delete(String id) { sqlOperation.clearParameter(); string sqlCommand = "DELETE FROM news WHERE ID=@id"; sqlOperation.AddParameterWithValue("@id", id); sqlOperation.ExecuteNonQuery(sqlCommand); }
public void Update(string id, string Description) { string sqlCommand = "UPDATE role SET Description=@description WHERE ID=@id"; sqlOperation.AddParameterWithValue("@id", id); sqlOperation.AddParameterWithValue("@description", Description); sqlOperation.ExecuteNonQuery(sqlCommand); }
private bool RecordPatientInformation() { string savePath = ""; string savepath1 = ""; if (FileUpload.HasFile) { savePath = Server.MapPath("~/upload/FixRecord");//指定上传文件在服务器上的保存路径 //检查服务器上是否存在这个物理路径,如果不存在则创建 if (!System.IO.Directory.Exists(savePath)) { System.IO.Directory.CreateDirectory(savePath); } savePath = savePath + "\\" + DateTime.Now.ToString("yyyyMMdd") + FileUpload.FileName; savepath1 = "../upload/FixRecord/" + DateTime.Now.ToString("yyyyMMdd") + FileUpload.FileName; FileUpload.SaveAs(savePath); } string treatid = Request.Form["hidetreatID"]; int treatID = Convert.ToInt32(treatid); string fixedid = "select Fixed_ID from treatment where treatment.ID=@treatid"; sqlOperation.AddParameterWithValue("@treatid", treatID); int FixedID = int.Parse(sqlOperation.ExecuteScalar(fixedid)); //string userID = "1"; string userID = Request.Form["userID"]; int userid = Convert.ToInt32(userID); DateTime datetime = DateTime.Now; bool state = false; string strSqlCommand = "UPDATE fixed SET Pictures=@picture,BodyPositionDetail=@detail,AnnexDescription=@description,Remarks=@remarks,OperateTime=@datetime,Operate_User_ID=@userid where fixed.ID=@fixedID"; //各参数赋予实际值 sqlOperation.AddParameterWithValue("@fixedID", FixedID); sqlOperation.AddParameterWithValue("@detail", Request.Form["BodyPositionDetail"]); sqlOperation.AddParameterWithValue("@description", Request.Form["AnnexDescription"]); sqlOperation.AddParameterWithValue("@remarks", Request.Form["Remarks"]); sqlOperation.AddParameterWithValue("@datetime", datetime); sqlOperation.AddParameterWithValue("@userid", userid); sqlOperation.AddParameterWithValue("@picture", savepath1); string strSqlCommand1 = "UPDATE appointment SET State=@state where Treatment_ID=@treatid"; sqlOperation.AddParameterWithValue("@state", state); sqlOperation.AddParameterWithValue("@treatid", treatID); int intSuccess = sqlOperation.ExecuteNonQuery(strSqlCommand); if (intSuccess > 0) { sqlOperation.ExecuteNonQuery(strSqlCommand1); return(true); } else { return(false); } }
public void Delete(string ID) { string sqlCommand = "DELETE FROM function where ID=@id"; sqlOperation.AddParameterWithValue("@id", ID); sqlOperation.ExecuteNonQuery(sqlCommand); }
/// <summary> /// 消息发布到数据库 /// </summary> /// <returns></returns> private Boolean AddNews() { string Title = Request.Form["title"]; string Content = Request.Form["mainText"]; string IsTop = rb1.SelectedValue; //将信息写入数据库,并返回是否成功 string strSqlCommand = "INSERT INTO news(Title,Content,Releasetime,IsTop) " + "VALUES(@Title,@Content,@Releasetime,@IsTop)"; sqlOperation.AddParameterWithValue("@Title", Title); sqlOperation.AddParameterWithValue("@Content", Content); sqlOperation.AddParameterWithValue("@Releasetime", DateTime.Now); sqlOperation.AddParameterWithValue("@IsTop", IsTop); int intSuccess = sqlOperation.ExecuteNonQuery(strSqlCommand); return((intSuccess > 0) ? true : false); }
/// <summary> /// 消息发布到数据库 /// </summary> /// <returns></returns> private Boolean AddNews() { string Enterprise = Request.Form["enterprise"]; string DelphiMethod = Request.Form["professional"]; string ConsumerSurvey = Request.Form["consumer"]; //将信息写入数据库,并返回是否成功 string strSqlCommand = "INSERT INTO socialvaluation(Enterprise,DelphiMethod,ConsumerSurvey,Releasetime) " + "VALUES(@Enterprise,@DelphiMethod,@ConsumerSurvey,@Releasetime)"; sqlOperation.AddParameterWithValue("@Enterprise", Enterprise); sqlOperation.AddParameterWithValue("@DelphiMethod", DelphiMethod); sqlOperation.AddParameterWithValue("@ConsumerSurvey", ConsumerSurvey); sqlOperation.AddParameterWithValue("@Releasetime", DateTime.Now); int intSuccess = sqlOperation.ExecuteNonQuery(strSqlCommand); return((intSuccess > 0) ? true : false); }
/// <summary> /// 给sql命令@number参数赋予对象 /// </summary> private void addParam() { sqlOperation.clearParameter();//先清空防止多次赋予异常 if (Request.Form["userID"] != "") { string userName = Request.QueryString["userID"]; sqlOperation.AddParameterWithValue("@number", userName); } }
/// <summary> /// 消息发布到数据库 /// </summary> /// <returns></returns> private Boolean AddNews() { //获取表单信息 UserInformation loginUser = (UserInformation)Session["loginUser"]; int Release_User_ID = loginUser.GetUserID(); string Title = Request.Form["title"]; string Content = Request.Form["mainText"]; bool Important = (Request.Form["important"] == "1") ? true : false; string Permission = Request.Form["selectedRole"]; //将信息写入数据库,并返回是否成功 string strSqlCommand = "INSERT INTO news(Release_User_ID,Title,Content,Important,Permission,Releasetime) " + "VALUES(@Release_User_ID,@Title,@Content,@Important,@Permission,@Releasetime)"; sqlOperation.AddParameterWithValue("@Release_User_ID", Release_User_ID); sqlOperation.AddParameterWithValue("@Title", Title); sqlOperation.AddParameterWithValue("@Content", Content); sqlOperation.AddParameterWithValue("@Important", Important); sqlOperation.AddParameterWithValue("@Permission", Permission); sqlOperation.AddParameterWithValue("@Releasetime", DateTime.Now); int intSuccess = sqlOperation.ExecuteNonQuery(strSqlCommand); return((intSuccess > 0) ? true : false); }
private void recordNewFunction() { string selectedFunction = Request.Form["updateFunctions"]; string[] selectArray = selectedFunction.Split(' '); string roleID = Request.Form["RoleID"]; string deleteAll = "DELETE FROM function2role WHERE Role_ID=@id"; sqlOperation.AddParameterWithValue("@id", roleID); sqlOperation.ExecuteNonQuery(deleteAll); string sqlCommand = "INSERT INTO function2role(Function_ID,Role_ID) VALUES(@fid,@rid)"; sqlOperation.AddParameterWithValue("@rid", roleID); for (int i = 0; i < selectArray.Length; i++) { if (selectArray[i] != "") { sqlOperation.AddParameterWithValue("@fid", selectArray[i]); sqlOperation.ExecuteNonQuery(sqlCommand); } } }
private DataLayer sqlOperation = new DataLayer("sqlhuaian");//数据库操作类 protected void Page_Load(object sender, EventArgs e) { string id = Request.QueryString["ID"]; string sqlCommand = "SELECT Title,Content,Releasetime from industrynews where ID=@id"; sqlOperation.AddParameterWithValue("@id", id); MySql.Data.MySqlClient.MySqlDataReader reader = sqlOperation.ExecuteReader(sqlCommand); if (reader.Read()) { DateTime date = Convert.ToDateTime(reader["Releasetime"].ToString()); string day = date.Year.ToString() + "-" + date.Month.ToString() + "-" + date.Day.ToString(); this.Label3.Text = reader["Title"].ToString(); this.Label2.Text = "发布时间:" + day + "  "; this.Label1.Text = reader["Content"].ToString(); } }
/// <summary> /// 检查用户名是否重复 /// </summary> /// <returns>不重复返回true否则返回false</returns> private bool CheckDuplicateUserName() { string strSqlCommand = "SELECT COUNT(ID) FROM user WHERE NUMBER=@InputUserNumber"; string strInputUserNumber = Request.Form["userName"]; //MessageBox.Message(strInputUserNumber); sqlOperation.AddParameterWithValue("@InputUserNumber", strInputUserNumber); int intUserNumberCount = int.Parse(sqlOperation.ExecuteScalar(strSqlCommand)); if (intUserNumberCount > 0) { return(false); } return(true); }
private DataLayer sqlOperation = new DataLayer("sqlStr");//数据库操作类 protected void Page_Load(object sender, EventArgs e) { if (Session["loginUser"] == null) { MessageBox.Message("请先登陆"); Response.Write("<script language=javascript>window.location.replace('../Main/Login.aspx');</script>"); } string id = Request.QueryString["ID"]; string sqlCommand = "SELECT Title,Content,Releasetime,user.Name RName FROM news,user WHERE news.ID=@id AND user.ID=news.Release_User_ID"; sqlOperation.AddParameterWithValue("@id", id); MySql.Data.MySqlClient.MySqlDataReader reader = sqlOperation.ExecuteReader(sqlCommand); if (reader.Read()) { DateTime date = Convert.ToDateTime(reader["Releasetime"].ToString()); string day = date.Year.ToString() + "-" + date.Month.ToString() + "-" + date.Day.ToString(); this.Label3.Text = reader["Title"].ToString(); this.Label2.Text = "发布时间:" + day + "  " + "发布者:" + reader["RName"]; this.Label1.Text = reader["Content"].ToString(); } }
private Boolean AddNews() { string enterprise = Request.Form["enterprise"]; string totalassets = Request.Form["totalAssets"]; string area = Request.Form["area"]; string productoutput = Request.Form["productOutput"]; string employeesnumber = Request.Form["employeesNumber"]; string year = Request.Form["year"]; string strSqlCommand = "INSERT INTO size(enterprise,totalassets,area,productoutput,employeesnumber,year,releasetime)" + "VALUES(@enterprise,@totalassets,@area,@productoutput,@employeesnumber,@year,@releasetime)"; sqlOperation.AddParameterWithValue("@enterprise", enterprise); sqlOperation.AddParameterWithValue("@totalassets", totalassets); sqlOperation.AddParameterWithValue("@area", area); sqlOperation.AddParameterWithValue("@productoutput", productoutput); sqlOperation.AddParameterWithValue("@employeesnumber", employeesnumber); sqlOperation.AddParameterWithValue("@year", year); sqlOperation.AddParameterWithValue("@Releasetime", DateTime.Now); int intSuccess = sqlOperation.ExecuteNonQuery(strSqlCommand); return((intSuccess > 0) ? true : false); }
/// <summary> /// 消息发布到数据库 /// </summary> /// <returns></returns> private Boolean AddNews() { string Enterprise = Request.Form["enterprise"]; string PatentValue = Request.Form["patent"]; string BrandValue = Request.Form["brand"]; string InternationalAward = Request.Form["international"]; string NationAward = Request.Form["nation"]; string ProvinceAward = Request.Form["province"]; //将信息写入数据库,并返回是否成功 string strSqlCommand = "INSERT INTO intangibleassets(Enterprise,PatentValue,BrandValue,InternationalAward,NationAward,ProvinceAward,Releasetime) " + "VALUES(@Enterprise,@PatentValue,@BrandValue,@InternationalAward,@NationAward,@ProvinceAward,@Releasetime)"; sqlOperation.AddParameterWithValue("@Enterprise", Enterprise); sqlOperation.AddParameterWithValue("@PatentValue", PatentValue); sqlOperation.AddParameterWithValue("@BrandValue", BrandValue); sqlOperation.AddParameterWithValue("@InternationalAward", InternationalAward); sqlOperation.AddParameterWithValue("@NationAward", NationAward); sqlOperation.AddParameterWithValue("@ProvinceAward", ProvinceAward); sqlOperation.AddParameterWithValue("@Releasetime", DateTime.Now); int intSuccess = sqlOperation.ExecuteNonQuery(strSqlCommand); return((intSuccess > 0) ? true : false); }
/// <summary> /// 消息发布到数据库 /// </summary> /// <returns></returns> private Boolean AddProduct() { string Enterprise = Request.Form["enterprise"]; string Brand = Request.Form["brand"]; string Degree = Request.Form["degree"]; string Scent = Request.Form["scent"]; string Other = Request.Form["other"]; //将信息写入数据库,并返回是否成功 string strSqlCommand = "INSERT INTO product(Enterprise,Brand,Degree,Scent,Other,Releasetime)" + "VALUES(@Enterprise,@Brand,@Degree,@Scent,@Other,@Releasetime)"; sqlOperation.AddParameterWithValue("@Enterprise", Enterprise); sqlOperation.AddParameterWithValue("@Brand", Brand); sqlOperation.AddParameterWithValue("@Degree", Degree); sqlOperation.AddParameterWithValue("@Scent", Scent); sqlOperation.AddParameterWithValue("@Other", Other); sqlOperation.AddParameterWithValue("@Releasetime", DateTime.Now); int intSuccess = sqlOperation.ExecuteNonQuery(strSqlCommand); return((intSuccess > 0) ? true : false); }
/// <summary> /// 获取前台传来的设备信息修改,更新数据库equipment /// </summary> private void Update() { //获取相应信息 string equipmentID = Request.Form["equipID"]; string equipmentName = Request.Form["equipmentName"]; string equipmentState = Request.Form["equipmentState"]; string onceTime = Request.Form["onceTime"]; string AMbeg = Request.Form["AMbeg"]; string AMEnd = Request.Form["AMEnd"]; string PMBeg = Request.Form["PMBeg"]; string PMEnd = Request.Form["PMEnd"]; string treatmentItem = Request.Form["changeTreatmentItem"]; //sql语句 string sqlCommand = "UPDATE equipment SET Name=@Name,State=@State,Timelength=@Timelength," + "BeginTimeAM=@BeginTimeAM,EndTimeAM=@EndTimeAM,BegTimePM=@BegTimePM," + "EndTimeTPM=@EndTimeTPM,TreatmentItem=@TreatmentItem WHERE ID=@ID"; //添加参数 sqlOperation.AddParameterWithValue("@ID", Convert.ToInt32(equipmentID)); sqlOperation.AddParameterWithValue("@Name", equipmentName); sqlOperation.AddParameterWithValue("@State", equipmentState); sqlOperation.AddParameterWithValue("@Timelength", Convert.ToInt32(onceTime)); sqlOperation.AddParameterWithValue("@BeginTimeAM", TimeStringToInt(AMbeg)); sqlOperation.AddParameterWithValue("@EndTimeAM", TimeStringToInt(AMEnd)); sqlOperation.AddParameterWithValue("@BegTimePM", TimeStringToInt(PMBeg)); sqlOperation.AddParameterWithValue("@EndTimeTPM", TimeStringToInt(PMEnd)); sqlOperation.AddParameterWithValue("@TreatmentItem", treatmentItem); //执行 sqlOperation.ExecuteNonQuery(sqlCommand); //成功提示 MessageBox.Message("修改成功!"); }
private bool RecordtreatmentInformation() { string treatid = Request.Form["hidetreatID"]; string sqlcommand = "select max(id) from treatmentrecord where Treatment_ID=@treatid and TreatTime is NULL and TreatedDays is NULL"; sqlOperation.AddParameterWithValue("@treatid", treatid); string id = sqlOperation.ExecuteScalar(sqlcommand); int intSuccess = 0; if (id.ToString() != "") { string sqlcommand2 = "select id from user where name=@name"; sqlOperation.AddParameterWithValue("name", Request.Form["assistoperator1"]); string userid = sqlOperation.ExecuteScalar(sqlcommand2); string sqlcommand1 = "update treatmentrecord set Treatment_ID=@treatid,TreatTime=@treattime,TreatedDays=@TreatedDays,TreatedTimes=@TreatedTimes,Treat_User_ID=@Treat_User_ID,Check_User_ID=1,IlluminatedNumber=@IlluminatedNumber,MachineNumbe=@MachineNumbe,Assist_User_ID=@Assist_User_ID,Singlenumber=@Singlenumber,X_System=@X_System,Y_System=@Y_System,Z_System=@Z_System where ID=@id"; sqlOperation.AddParameterWithValue("@id", Convert.ToInt32(id)); sqlOperation.AddParameterWithValue("@Z_System", Convert.ToInt32(Request.Form["SIcount1"])); sqlOperation.AddParameterWithValue("@Y_System", Convert.ToInt32(Request.Form["APcount1"])); sqlOperation.AddParameterWithValue("@X_System", Convert.ToInt32(Request.Form["RLcount1"])); sqlOperation.AddParameterWithValue("@Singlenumber", Convert.ToInt32(Request.Form["Number5"])); sqlOperation.AddParameterWithValue("@Assist_User_ID", Convert.ToInt32(userid)); sqlOperation.AddParameterWithValue("@Treat_User_ID", Convert.ToInt32(Request.Form["userID"])); sqlOperation.AddParameterWithValue("@IlluminatedNumber", Convert.ToInt32(Request.Form["Number3"])); sqlOperation.AddParameterWithValue("@MachineNumbe", Convert.ToInt32(Request.Form["Number4"])); sqlOperation.AddParameterWithValue("@TreatedDays", Convert.ToInt32(Request.Form["treateddays1"])); sqlOperation.AddParameterWithValue("@treattime", DateTime.Now); sqlOperation.AddParameterWithValue("@TreatedTimes", Convert.ToInt32(Request.Form["treatdatetime1"])); intSuccess = sqlOperation.ExecuteNonQuery(sqlcommand1); string sqlcommand3 = "insert into igrt(Tool,Algorithm,IGRTRange,Operate_User_ID,OperateTime,TreatmentRecord_ID) values(@Tool,@Algorithm,@Range,@Operate_User_ID,@OperateTime,@id)"; sqlOperation.AddParameterWithValue("@Tool", Request.Form["equip"]); sqlOperation.AddParameterWithValue("@Algorithm", Request.Form["peizhun"]); sqlOperation.AddParameterWithValue("@Range", Request.Form["range"]); sqlOperation.AddParameterWithValue("@Operate_User_ID", Convert.ToInt32(Request.Form["userID"])); sqlOperation.AddParameterWithValue("@OperateTime", DateTime.Now); int success = sqlOperation.ExecuteNonQuery(sqlcommand3); string x = Request.Form["live"]; string[] group = x.Split(new Char[] { ',' }); int k = 1; for (; k <= group.Length - 1; k++) { string temp = group[k]; string xvalue = Request.Form["Number" + temp + "1"]; string yvalue = Request.Form["Number" + temp + "2"]; string zvalue = Request.Form["Number" + temp + "3"]; string sqlcommandtemp = "insert into locaterecord(X,Y,Z,TreatmentRecord_ID) values(@X,@Y,@Z,@TreatmentRecord_ID)"; sqlOperation.AddParameterWithValue("@X", Convert.ToDouble(xvalue)); sqlOperation.AddParameterWithValue("@Y", Convert.ToDouble(yvalue)); sqlOperation.AddParameterWithValue("@Z", Convert.ToDouble(zvalue)); sqlOperation.AddParameterWithValue("@TreatmentRecord_ID", Convert.ToInt32(id)); sqlOperation.ExecuteNonQuery(sqlcommandtemp); } } else { string sqlcommand2 = "select id from user where name=@name"; sqlOperation.AddParameterWithValue("name", Request.Form["assistoperator1"]); string userid = sqlOperation.ExecuteScalar(sqlcommand2); string insert = "insert into treatmentrecord(Treatment_ID,TreatTime,TreatedDays,TreatedTimes,Treat_User_ID,Check_User_ID,IlluminatedNumber,MachineNumbe,Assist_User_ID,Singlenumber,X_System,Y_System,Z_System) values(@treatid,@treattime,@TreatedDays,@TreatedTimes,@Treat_User_ID,1,@IlluminatedNumber,@MachineNumbe,@Assist_User_ID,@Singlenumber,@X_System,@Y_System,@Z_System)"; sqlOperation.AddParameterWithValue("@Z_System", Request.Form["SIcount1"]); sqlOperation.AddParameterWithValue("@Y_System", Request.Form["APcount1"]); sqlOperation.AddParameterWithValue("@X_System", Request.Form["RLcount1"]); sqlOperation.AddParameterWithValue("@Singlenumber", Request.Form["Number5"]); sqlOperation.AddParameterWithValue("@Assist_User_ID", Convert.ToInt32(userid)); sqlOperation.AddParameterWithValue("@Treat_User_ID", Convert.ToInt32(Request.Form["userID"])); sqlOperation.AddParameterWithValue("@IlluminatedNumber", Convert.ToInt32(Request.Form["Number3"])); sqlOperation.AddParameterWithValue("@MachineNumbe", Convert.ToInt32(Request.Form["Number4"])); sqlOperation.AddParameterWithValue("@TreatedDays", Convert.ToInt32(Request.Form["treateddays1"])); sqlOperation.AddParameterWithValue("@treattime", DateTime.Now); sqlOperation.AddParameterWithValue("@TreatedTimes", Convert.ToInt32(Request.Form["treatdatetime1"])); intSuccess = sqlOperation.ExecuteNonQuery(insert); string command = "select max(id) from treatmentrecord where Treatment_ID=@treatid and TreatedDays=@TreatedDays"; string treatrecord = sqlOperation.ExecuteScalar(command); string sqlcommand3 = "insert into igrt(Tool,Algorithm,IGRTRange,Operate_User_ID,OperateTime,TreatmentRecord_ID) values(@Tool,@Algorithm,@Range,@Operate_User_ID,@OperateTime,@id)"; sqlOperation.AddParameterWithValue("@Tool", Request.Form["equip"]); sqlOperation.AddParameterWithValue("@Algorithm", Request.Form["peizhun"]); sqlOperation.AddParameterWithValue("@Range", Request.Form["range"]); sqlOperation.AddParameterWithValue("@Operate_User_ID", Convert.ToInt32(Request.Form["userID"])); sqlOperation.AddParameterWithValue("@OperateTime", DateTime.Now); sqlOperation.AddParameterWithValue("@id", Convert.ToInt32(treatrecord)); int success = sqlOperation.ExecuteNonQuery(sqlcommand3); string x = Request.Form["live"]; string[] group = x.Split(new Char[] { ',' }); int k = 1; for (; k <= group.Length - 1; k++) { string temp = group[k]; string xvalue = Request.Form["Number" + temp + "1"]; string yvalue = Request.Form["Number" + temp + "2"]; string zvalue = Request.Form["Number" + temp + "3"]; string sqlcommandtemp = "insert into locaterecord(X,Y,Z,TreatmentRecord_ID) values(@X,@Y,@Z,@TreatmentRecord_ID)"; sqlOperation.AddParameterWithValue("@X", Convert.ToDouble(xvalue)); sqlOperation.AddParameterWithValue("@Y", Convert.ToDouble(yvalue)); sqlOperation.AddParameterWithValue("@Z", Convert.ToDouble(zvalue)); sqlOperation.AddParameterWithValue("@TreatmentRecord_ID", Convert.ToInt32(treatrecord)); sqlOperation.ExecuteNonQuery(sqlcommandtemp); } } if (Request.Form["complete"] == "1") { string strSqlCommand3 = "UPDATE treatment SET Progress=16 where Treatment.ID=@tr"; sqlOperation.AddParameterWithValue("@tr", treatid); int intSuccess3 = sqlOperation.ExecuteNonQuery(strSqlCommand3); if (intSuccess > 0 && intSuccess3 > 0) { return(true); } else { return(false); } } else { if (intSuccess > 0) { return(true); } else { return(false); } } }
/*将数据传入数据库*/ private Boolean AddNews() { string enterprise = Request.Form["enterprise"]; string buildtime = Request.Form["buildTime"]; string usedname = Request.Form["usedName"]; string nowname = Request.Form["nowName"]; string changetime = Request.Form["changeTime"]; string usedname2 = Request.Form["usedName2"]; string nowname2 = Request.Form["nowName2"]; string changetime2 = Request.Form["changeTime2"]; string usedname3 = Request.Form["usedName3"]; string nowname3 = Request.Form["nowName3"]; string changetime3 = Request.Form["changeTime3"]; string remains = Request.Form["remains"]; string product = Request.Form["product"]; string strsqlCommand = "INSERT INTO history(enterprise,buildtime,usedname,nowname,changetime,usedname2,nowname2,changetime2,usedname3,nowname3,changetime3,remains,product,releasetime)" + "VALUES(@enterprise,@buildtime,@usedname,@nowname,@changetime,@usedname2,@nowname2,@changetime2,@usedname3,@nowname3,@changetime3,remains,@product,@releasetime)"; sqlOperation.AddParameterWithValue("@enterprise", enterprise); sqlOperation.AddParameterWithValue("@buildtime", buildtime); sqlOperation.AddParameterWithValue("@usedname", usedname); sqlOperation.AddParameterWithValue("@nowname", nowname); sqlOperation.AddParameterWithValue("@changetime", changetime); sqlOperation.AddParameterWithValue("@usedname2", usedname2); sqlOperation.AddParameterWithValue("@nowname2", nowname2); sqlOperation.AddParameterWithValue("@changetime2", changetime2); sqlOperation.AddParameterWithValue("@usedname3", usedname3); sqlOperation.AddParameterWithValue("@nowname3", nowname3); sqlOperation.AddParameterWithValue("@changetime3", changetime3); sqlOperation.AddParameterWithValue("@remains", remains); sqlOperation.AddParameterWithValue("@product", product); sqlOperation.AddParameterWithValue("@releasetime", DateTime.Now); int intSuccess = sqlOperation.ExecuteNonQuery(strsqlCommand); return((intSuccess > 0) ? true : false); }
private bool RecordPatientInformation() { string savePath = ""; string savepath1 = ""; if (FileUpload.HasFile) { savePath = Server.MapPath("~/upload/Patient");//指定上传文件在服务器上的保存路径 //检查服务器上是否存在这个物理路径,如果不存在则创建 if (!System.IO.Directory.Exists(savePath)) { System.IO.Directory.CreateDirectory(savePath); } savePath = savePath + "\\" + DateTime.Now.ToString("yyyyMMdd") + FileUpload.FileName; savepath1 = "../upload/Patient/" + DateTime.Now.ToString("yyyyMMdd") + FileUpload.FileName; FileUpload.SaveAs(savePath); } string maxnumber = "select Max(ID) from patient"; string count = sqlOperation.ExecuteScalar(maxnumber); int max; if (count == "") { max = 1; } else { max = int.Parse(count) + 1; } string treatid = DateTime.Now.Year.ToString() + Request.Form["SickPart"] + max; string strSqlCommand = "INSERT INTO patient(ID,IdentificationNumber,Hospital,RecordNumber,Picture,Name,Gender,Age,Birthday,Nation,Address,Contact1,Contact2,Height,Weight) VALUES(" + "@ID,@IdentificationNumber,@Hospital,@RecordNumber,@Picture,@Name,@Gender,@Age,@Birthday,@Nation,@Address,@Contact1,@Contact2,@Height,@Weight)"; //各参数赋予实际值 sqlOperation.AddParameterWithValue("@ID", max); sqlOperation.AddParameterWithValue("@IdentificationNumber", Request.Form["IDcardNumber"]); sqlOperation.AddParameterWithValue("@Hospital", Request.Form["Hospital"]); sqlOperation.AddParameterWithValue("@RecordNumber", Request.Form["RecordNumber"]); sqlOperation.AddParameterWithValue("@Picture", savepath1); sqlOperation.AddParameterWithValue("@Name", Request.Form["userName"]); sqlOperation.AddParameterWithValue("@Gender", Request.Form["sex"]); sqlOperation.AddParameterWithValue("@Birthday", Request.Form["Birthday"]); sqlOperation.AddParameterWithValue("@Age", Convert.ToInt32(DateTime.Now.Year.ToString()) - Convert.ToInt32(Request.Form["Birthday"].Substring(0, 4))); sqlOperation.AddParameterWithValue("@Nation", Request.Form["Nation"]); sqlOperation.AddParameterWithValue("@Address", Request.Form["Address"]); sqlOperation.AddParameterWithValue("@Contact1", Request.Form["Number1"]); sqlOperation.AddParameterWithValue("@Contact2", Request.Form["Number2"]); sqlOperation.AddParameterWithValue("@Height", Request.Form["height"]); sqlOperation.AddParameterWithValue("@Weight", Request.Form["weight"]); int intSuccess = sqlOperation.ExecuteNonQuery(strSqlCommand); int intSuccess2 = 0; if (intSuccess > 0) { string treatinsert = "insert into treatment(ID,Patient_ID) values(@ID,@PID)"; sqlOperation.AddParameterWithValue("@ID", treatid); sqlOperation.AddParameterWithValue("@PID", max); intSuccess2 = sqlOperation.ExecuteNonQuery(treatinsert); } if (intSuccess2 > 0) { return(true); } else { return(false); } }