/// <summary> /// 新增 /// </summary> /// <param name="user"></param> /// <returns></returns> private static bool InsertUser(User user) { var sql = @"INSERT INTO User (Account,RealName,Password,CreationTime) VALUES(?,?,?,?)"; var parameters = new OleDbParameter[4]; parameters[0] = new OleDbParameter("@Account", OleDbType.VarChar, 50) { Value = user.RealName }; parameters[1] = new OleDbParameter("@RealName", OleDbType.Integer) { Value = user.RealName }; parameters[2] = new OleDbParameter("@Password", OleDbType.Integer) { Value = Encrypt.Md5By32(user.Password) }; parameters[3] = new OleDbParameter("@CreationTime", OleDbType.Date) { Value = DateTime.Now }; return(AccessDbUtil.ExecuteInsert(sql, parameters) == 1); }
/// <summary> /// 获取分页数据 /// </summary> /// <param name="curPageIndex"></param> /// <param name="where"></param> /// <returns></returns> public static Page GetStudents(int curPageIndex, string where) { var sqlQuery = "select * from Student"; var sqlCount = "select count(*) from Student"; var sqlOrder = " order by name"; if (where != null) { string sqlCondition = where; sqlQuery += sqlCondition + sqlOrder; sqlCount += sqlCondition; } int totalRecord = AccessDbUtil.ExecuteScalar(sqlCount); var page = new Page(totalRecord, AccessPageUtil.PageSize); if (curPageIndex >= page.TotalPage) { curPageIndex = page.TotalPage - 1; } if (curPageIndex < 0) { curPageIndex = 0; } page.CurPageIndex = curPageIndex; var data = AccessPageUtil.Query(sqlQuery, curPageIndex, totalRecord); var ls = new List <Student>(); foreach (DataRow row in data.Tables["ds"].Rows) { ls.Add(RowToEntity(row)); } page.ValueList = ls; return(page); }
public static User Get(string where) { var sql = "select * from User where 1=1"; if (!string.IsNullOrEmpty(where)) { sql += where; } var ds = AccessDbUtil.ExecuteQuery(sql); return(RowToEntity(ds.Tables["ds"].Rows[0])); }
/// <summary> /// 更新学生信息 /// </summary> /// <param name="student"></param> /// <returns></returns> private static bool UpdateStudent(Student student) { var sql = @"UPDATE Student SET RealName = ? ,Age = ? ,Sex =? ,Class = ? ,Grade = ? ,ParentsName = ? ,ContantNumber = ? ,DanceGradeId = ? WHERE Id=?" ; var parameters = new OleDbParameter[9]; parameters[0] = new OleDbParameter("@RealName", OleDbType.VarChar, 50) { Value = student.RealName }; parameters[1] = new OleDbParameter("@Age", OleDbType.Integer) { Value = student.Age }; parameters[2] = new OleDbParameter("@Sex", OleDbType.Integer) { Value = (int)student.Sex }; parameters[3] = new OleDbParameter("@Class", OleDbType.VarChar, 25) { Value = student.Class }; parameters[4] = new OleDbParameter("@Grade", OleDbType.VarChar, 50) { Value = student.Grade }; parameters[5] = new OleDbParameter("@ParentsName", OleDbType.VarChar, 50) { Value = student.ParentsName }; parameters[6] = new OleDbParameter("@ContantNumber", OleDbType.VarChar, 150) { Value = student.ContantNumber }; parameters[7] = new OleDbParameter("@DanceGradeId", OleDbType.Integer) { Value = student.DanceGradeId }; parameters[8] = new OleDbParameter("@id", OleDbType.Integer) { Value = student.Id }; return(AccessDbUtil.ExecuteNonQuery(sql, parameters) == 1); }
/// <summary> /// 新增学生信息 /// </summary> /// <param name="student"></param> /// <returns></returns> private static bool InsertStudent(Student student) { var sql = @"INSERT INTO Student (RealName,Age,Sex,Class,Grade,ParentsName,ContantNumber,DanceGradeId) VALUES(?,?,?,?,?,?,?,?)"; var parameters = new OleDbParameter[8]; parameters[0] = new OleDbParameter("@RealName", OleDbType.VarChar, 50) { Value = student.RealName.Trim() }; parameters[1] = new OleDbParameter("@Age", OleDbType.Integer) { Value = student.Age }; parameters[2] = new OleDbParameter("@Sex", OleDbType.Integer) { Value = student.Sex.Value() }; parameters[3] = new OleDbParameter("@Class", OleDbType.VarChar, 25) { Value = student.Class.Trim() }; parameters[4] = new OleDbParameter("@Grade", OleDbType.VarChar, 50) { Value = student.Grade.Trim() }; parameters[5] = new OleDbParameter("@ParentsName", OleDbType.VarChar, 50) { Value = student.ParentsName.Trim() }; parameters[6] = new OleDbParameter("@ContantNumber", OleDbType.VarChar, 150) { Value = student.ContantNumber.Trim() }; parameters[7] = new OleDbParameter("@DanceGradeId", OleDbType.Integer) { Value = student.DanceGradeId }; return(AccessDbUtil.ExecuteInsert(sql, parameters) == 1); }
public static User Login(string account, string password, ref string strResult) { strResult = "1"; if (string.IsNullOrEmpty(account)) { strResult = "账号不能为空"; return(null); } if (string.IsNullOrEmpty(password)) { strResult = "密码不能为空"; return(null); } var sql = "select * from [user] where account=?"; var parameters = new[] { new OleDbParameter("@account", OleDbType.VarChar, 50) { Value = account } }; var ds = AccessDbUtil.ExecuteQuery(sql, parameters); if (ds.Tables[0].Rows.Count == 0) { strResult = "账号不存在!"; return(null); } var user = RowToEntity(ds.Tables[0].Rows[0]); password = Encrypt.Md5By32(password); if (user.Password != password) { strResult = "密码不正确!"; return(null); } return(user); }
/// <summary> /// 验证是否存在 /// </summary> /// <param name="user"></param> /// <returns></returns> public static bool Exists(User user) { var strSql = "select 1 from user where account='" + user.Account + "'"; return(AccessDbUtil.Exists(strSql)); }