public static User Get(string where) { var sql = "select * from User where 1=1"; if (!string.IsNullOrEmpty(where)) { sql += where; } var ds = AccessDbUtil.ExecuteQuery(sql); return(RowToEntity(ds.Tables["ds"].Rows[0])); }
public static User Login(string account, string password, ref string strResult) { strResult = "1"; if (string.IsNullOrEmpty(account)) { strResult = "账号不能为空"; return(null); } if (string.IsNullOrEmpty(password)) { strResult = "密码不能为空"; return(null); } var sql = "select * from [user] where account=?"; var parameters = new[] { new OleDbParameter("@account", OleDbType.VarChar, 50) { Value = account } }; var ds = AccessDbUtil.ExecuteQuery(sql, parameters); if (ds.Tables[0].Rows.Count == 0) { strResult = "账号不存在!"; return(null); } var user = RowToEntity(ds.Tables[0].Rows[0]); password = Encrypt.Md5By32(password); if (user.Password != password) { strResult = "密码不正确!"; return(null); } return(user); }