public static List <M_News> SelectNews(M_Admin admin)
{
//M_Admin admin = new M_Admin();
//admin = (M_Admin)Objadmin;
if (admin.Power == 0)
{
string strsql = string.Format("select * from News where Admin_ID={0}", admin.Admin_ID);
List <M_News> listnews = new List <M_News>();
using (SqlDataReader dr = DBHelper.SelectTable(strsql))
{
while (dr.Read())
{
listnews.Add(GetNews(dr));
}
}
return(listnews);
}
else
{
string strsql = "select * from News";
List <M_News> listnews = new List <M_News>();
using (SqlDataReader dr = DBHelper.SelectTable(strsql))
{
while (dr.Read())
{
listnews.Add(GetNews(dr));
}
}
return(listnews);
}
}
protected void Page_Load(object sender, EventArgs e)
{
if (!IsPostBack)
{
if (Request.QueryString["NewsID"] != null)
{
admin = (M_Admin)Session["name"];
string newsid = Request.QueryString["NewsID"].ToString();
List <M_News> news = new List <M_News>();
news = B_News.SelectNewsID(newsid);
txtTitle.Text = news[0].News_Title.ToString();
ddlClass.DataSource = B_News.SelectClass(admin);
ddlClass.DataTextField = "Class_Name";
ddlClass.DataValueField = "Class_ID";
ddlClass.DataBind();
ddlClass.SelectedValue = news[0].Class_ID.ToString();
lblDate.Text = news[0].News_Date.ToString();
txtKey.Text = news[0].News_Key.ToString();
txtFrom.Text = admin.Admin_Name;
ckContet.Text = news[0].News_Content.ToString();
}
else
{
admin = (M_Admin)Session["name"];
ddlClass.AppendDataBoundItems = true;
ddlClass.Items.Add(new ListItem("-- 请选择一个选择项 --", ""));
ddlClass.DataSource = B_News.SelectClass(admin);
ddlClass.DataTextField = "Class_Name";
ddlClass.DataValueField = "Class_ID";
ddlClass.DataBind();
lblDate.Text = DateTime.Now.ToString();
txtFrom.Text = admin.Admin_Name;
}
}
}
public static int DeleteAdmin(M_Admin admin)
{
string strsql = "delete from Admin where Admin_ID=@Admin_ID";
SqlParameter[] comSql = new SqlParameter[] {
new SqlParameter("@Admin_ID", admin.Admin_ID),
};
return(DBHelper.IDUTable(strsql, comSql));
}
public static M_Admin GetAdmin(SqlDataReader AdminTable)
{
M_Admin admin = new M_Admin();
admin.Admin_ID = (int)AdminTable["Admin_ID"];
admin.Admin_Name = AdminTable["Admin_Name"].ToString();
admin.Admin_Password = AdminTable["Admin_Password"].ToString();
admin.Power = Convert.ToInt32((bool)AdminTable["Power"] ? 1 : 0);
return(admin);
}
public static int InsertAdmin(M_Admin admin)
{
string strsql = "Insert Admin values(@Admin_Name,@Admin_Password,@Power)";
SqlParameter[] comSql = new SqlParameter[] {
new SqlParameter("@Admin_Name", admin.Admin_Name),
new SqlParameter("@Admin_Password", admin.Admin_Password),
new SqlParameter("@Power", admin.Power)
};
return(DBHelper.IDUTable(strsql, comSql));
}
protected void Page_Load(object sender, EventArgs e)
{
if (!IsPostBack)
{
M_Admin admin = new M_Admin();
admin = (M_Admin)Session["name"];
if (admin.Power == 0)
{
Response.Write("<script>alert('用户权限不够!')</script>");
Response.Write("<script>window.location.href = 'index.aspx'</script>");
//Response.Redirect("index.aspx");
}
}
}
protected void Page_Load(object sender, EventArgs e)
{
if (!IsPostBack)
{
M_Admin admin = new M_Admin();
admin = (M_Admin)Session["name"];
ddlClass.AppendDataBoundItems = true;
ddlClass.Items.Add(new ListItem("-- 请选择一个选择项 --", ""));
ddlClass.DataSource = B_News.SelectClass(admin);
ddlClass.DataTextField = "Class_Name";
ddlClass.DataValueField = "Class_ID";
ddlClass.DataBind();
gvNews.DataSource = B_News.SelectNews(admin);
gvNews.DataBind();
}
}
public static int UpdateAdmin(M_Admin admin, string Password)
{
if (GetPassword(Password))
{
string strsql = "update Admin set Admin_Password=@Admin_Password where Admin_ID=@Admin_ID";
SqlParameter[] comSql = new SqlParameter[]
{
new SqlParameter("@Admin_Password", admin.Admin_Password),
new SqlParameter("@Admin_ID", admin.Admin_ID)
};
return(DBHelper.IDUTable(strsql, comSql));
}
else
{
return(0);
}
}
protected void Button1_Click(object sender, EventArgs e)
{
M_Admin admin = new M_Admin();
string name = txtName.Text.Trim();
string password = txtPassword.Text.Trim();
admin.Admin_Name = name;
admin.Admin_Password = FormsAuthentication.HashPasswordForStoringInConfigFile(password, "MD5");
if (B_Admin.InsertAdmin(admin))
{
Response.Write("<script>alert('添加成功!')</script>");
}
else
{
Response.Write("<script>alert('添加失败!')</script>");
}
}
protected void Button1_Click(object sender, EventArgs e)
{
M_Admin admin = new M_Admin();
string name = Name.Text.Trim();
string password = Password.Text.Trim();
admin.Admin_Name = name;
admin.Admin_Password = FormsAuthentication.HashPasswordForStoringInConfigFile(password, "MD5");
if (B_Admin.Verify(admin) == null)
{
Response.Write("<script>alert('登录失败!\n用户名或密码错误!')</script>");
}
else
{
Session["name"] = B_Admin.Verify(admin);
Response.Redirect("index.aspx");
}
}
protected void Button1_Click(object sender, EventArgs e)
{
if (Request.QueryString["NewsID"] != null)
{
admin = (M_Admin)Session["name"];
news.News_ID = Convert.ToInt32(Request.QueryString["NewsID"]);
news.News_Title = txtTitle.Text.Trim();
news.Class_ID = Convert.ToInt32(ddlClass.SelectedValue);
news.Admin_ID = admin.Admin_ID;
news.News_Key = txtKey.Text.Trim();
news.News_Ource = txtFrom.Text;
news.News_Content = ckContet.Text;
news.News_Date = DateTime.Now;
if (B_News.UpdateNews(news))
{
Response.Write("<script>alert('修改成功!')</script>");
}
else
{
Response.Write("<script>alert('修改失败!')</script>");
}
}
else
{
admin = (M_Admin)Session["name"];
news.News_Title = txtTitle.Text.Trim();
news.Class_ID = Convert.ToInt32(ddlClass.SelectedValue);
news.Admin_ID = admin.Admin_ID;
news.News_Key = txtKey.Text.Trim();
news.News_Ource = txtFrom.Text;
news.News_Content = ckContet.Text;
news.News_Date = DateTime.Now;
if (B_News.InsertNews(news))
{
Response.Write("<script>alert('添加成功!')</script>");
}
else
{
Response.Write("<script>alert('添加失败!')</script>");
}
}
}
public static List <M_Class> SelectClass(M_Admin admin)
{
if (admin.Power == 0)
{
string strsql = string.Format("select Class.* from Class,Popedom where Class.Class_ID=Popedom.Class_ID and Popedom.Admin_ID={0}", admin.Admin_ID);
List <M_Class> listClass = new List <M_Class>();
using (SqlDataReader dr = DBHelper.SelectTable(strsql))
{
while (dr.Read())
{
listClass.Add(D_Class.GetClass(dr));
}
}
return(listClass);
}
else
{
return(D_Class.SelectClass());
}
}
public static M_Admin GetNamePassword(M_Admin admin)
{
string strsql = string.Format("select * from Admin where Admin_Name='{0}' and Admin_Password='******'", admin.Admin_Name, admin.Admin_Password);
return(GetAdminName(DBHelper.ExecuteReaderSelect(strsql)));
}
public static bool InsertAdmin(M_Admin admin)
{
int count = D_Admin.InsertAdmin(admin);
return(count > 0 ? true : false);
}
public static void DeleteAdmin(M_Admin admin)
{
D_Admin.DeleteAdmin(admin);
}
public static bool UpdateAdmin(M_Admin admin, string Password)
{
int count = D_Admin.UpdateAdmin(admin, Password);
return(count > 0 ? true : false);
}
public static List <M_News> SelectNews(M_Admin admin)
{
return(D_News.SelectNews(admin));
}
public static int GetExecuteScalar(M_Admin admin)
{
string strsql = string.Format("select count(*) from Admin where Admin_Name='{0}' and Admin_Password='******'", admin.Admin_Name, admin.Admin_Password);
return(DBHelper.ExecuteScalarSelect(strsql));
}
public static M_Admin Verify(M_Admin admin)
{
return(D_Admin.GetNamePassword(admin));
}
