protected void button5_ServerClick(object sender, EventArgs e) { BLL.Member member = new BLL.Member(); string password = Common.GetStringOfForm("txtPassword");//txtPassword.Text.Trim(); if (!member.CompareLoginPassword(UserLoginInfo.UserID, password)) { //Label1.Text = "对不起,您输入的旧密码有误!"; CommonManager.Web.RegJs(this, "alert('对不起,您输入的旧密码有误!');location.href=location.href;", true); BindInfo(); return; } //昵称可以输入任何字符,所以要对它进行HTML编码,防止恶意木马脚本字符串;过滤"'"为"''",避免SQL注入式攻击 string nickname = Server.HtmlEncode(Common.GetStringOfForm("nickname").Replace("'", "''")); string sex = Common.FilterString(Common.GetStringOfForm("sex")); string pwd = Common.FilterString(Common.GetStringOfForm("pwd")); string email = Common.FilterString(Common.GetStringOfForm("email")); string mobile = Common.FilterString(Common.GetStringOfForm("mobile")); string logoid = Common.FilterString(Common.GetStringOfForm("hidLogoID")); string qqnum = Common.FilterString(Common.GetStringOfForm("qqnum")); logoid = member.SetLogoID(Convert.ToInt32(sex.Trim()), Convert.ToInt32(logoid.Trim())).ToString(); string _address = Server.HtmlEncode(CommonManager.Web.RequestForm("txtAddress", "")); string _province = CommonManager.Web.RequestForm("hidProvince", ""); string _city = CommonManager.Web.RequestForm("hidCity", ""); string _occu = CommonManager.Web.RequestForm("txtOccuPation", ""); //int iRows = member.UpdateBaseInfo(UserLoginInfo.UserID, pwd, nickname, int.Parse(logoid), int.Parse(sex), email, mobile, qqnum); int iRows = member.UpdateBaseInfo(UserLoginInfo.UserID, pwd, nickname, int.Parse(logoid), int.Parse(sex), email, mobile, _occu, _province, _city, _address, qqnum); if (iRows > 0) { //Label1.Text = "资料修改成功!" + DateTime.Now; CommonManager.Web.RegJs(this, "alert('资料修改成功!');location.href=location.href;", true); BindInfo(); /*if (Convert.ToInt32(logoid.Trim()) <= BLL.Member.LogoId_Const2) * { * //trImgType.Attributes.Add("style", "display:none"); * //tbCust.Attributes.Add("style", "display:none"); * }*/ } else { //Label1.Text = "抱歉,资料修改失败,可能是服务器繁忙,请稍候再试!"; CommonManager.Web.RegJs(this, "alert('抱歉,资料修改失败,可能是服务器繁忙,请稍候再试!');location.href=location.href;", true); } }
protected void button5_ServerClick(object sender, EventArgs e) { if (!BCST.Common.CommonManager.Web.CheckPostSource()) return; BLL.Member member = new BLL.Member(); //string password = hidPwd2.Value.Trim();//txtPassword.Text.Trim(); string password = txtPassword.Text.Trim(); if (!member.CompareLoginPassword(UserLoginInfo.UserID, password)) { lblMsg.Text = "�Բ���������ĵ�¼��������"; return; } if (dd_11.Visible) { if (string.IsNullOrEmpty(txtOldTwoPass.Text.Trim())) { lblMsg.Text = "������ԭ�������룡"; return; } if (!member.CompareTwoPassword(UserLoginInfo.UserID, txtOldTwoPass.Text.Trim())) { lblMsg.Text = "�Բ����������ԭ������������"; return; } } string cardType = Common.FilterString(ddlCardType.SelectedValue); string cardNo = Common.FilterString(txtCardNo.Text.Trim()); string question = Common.FilterString(ddlQuestion.SelectedValue); string answer = Common.FilterString(txtAnwer.Text.Trim()); string twoPass = Common.FilterString(txtTwoPass.Text.Trim()); int iRows = 0; if (dd_5.Visible) { iRows = member.UpdateTwoPassInfo(UserLoginInfo.UserID, cardType, cardNo, question, answer, twoPass); } else if (!string.IsNullOrEmpty(twoPass)) { // iRows = member.UpdateTwoPass(UserLoginInfo.UserID, twoPass); iRows = member.UpdateTwoPass(UserLoginInfo.UserID, cardNo, answer, twoPass); } else { lblMsg.Text = "�������벻��Ϊ�գ�" + DateTime.Now; return; } if (iRows > 0) { if (dd_5.Visible) { lblMsg.Text = "�������뱣���������óɹ���" + DateTime.Now; } else { lblMsg.Text = "���������ijɹ���" + DateTime.Now; } Hidden(); //lblMsg.Text = "�������뱣�������ijɹ���" + DateTime.Now; //Hidden(); } else if (iRows == -9) { lblMsg.Text = "��Ǹ������д��֤�����������𰸲�����δ�����������룬���������룡"; Hidden(); } else { lblMsg.Text = "��Ǹ��������ʧ�ܣ������Ƿ�������æ�����Ժ����ԣ�"; } }
protected void button5_ServerClick(object sender, EventArgs e) { if (!BCST.Common.CommonManager.Web.CheckPostSource()) { return; } BLL.Member member = new BLL.Member(); //string password = hidPwd2.Value.Trim();//txtPassword.Text.Trim(); string password = txtPassword.Text.Trim(); if (!member.CompareLoginPassword(UserLoginInfo.UserID, password)) { lblMsg.Text = "对不起,您输入的登录密码有误!"; return; } if (dd_11.Visible) { if (string.IsNullOrEmpty(txtOldTwoPass.Text.Trim())) { lblMsg.Text = "请输入原二级密码!"; return; } if (!member.CompareTwoPassword(UserLoginInfo.UserID, txtOldTwoPass.Text.Trim())) { lblMsg.Text = "对不起,您输入的原二级密码有误!"; return; } } string cardType = Common.FilterString(ddlCardType.SelectedValue); string cardNo = Common.FilterString(txtCardNo.Text.Trim()); string question = Common.FilterString(ddlQuestion.SelectedValue); string answer = Common.FilterString(txtAnwer.Text.Trim()); string twoPass = Common.FilterString(txtTwoPass.Text.Trim()); int iRows = 0; if (dd_5.Visible) { iRows = member.UpdateTwoPassInfo(UserLoginInfo.UserID, cardType, cardNo, question, answer, twoPass); } else if (!string.IsNullOrEmpty(twoPass)) { // iRows = member.UpdateTwoPass(UserLoginInfo.UserID, twoPass); iRows = member.UpdateTwoPass(UserLoginInfo.UserID, cardNo, answer, twoPass); } else { lblMsg.Text = "银行密码不能为空!" + DateTime.Now; return; } if (iRows > 0) { if (dd_5.Visible) { lblMsg.Text = "银行密码保护资料设置成功!" + DateTime.Now; } else { lblMsg.Text = "银行密码修改成功!" + DateTime.Now; } Hidden(); //lblMsg.Text = "银行密码保护资料修改成功!" + DateTime.Now; //Hidden(); } else if (iRows == -9) { lblMsg.Text = "抱歉,您填写的证件号码或问题答案不符,未能修改银行密码,请重新输入!"; Hidden(); } else { lblMsg.Text = "抱歉,资料修改失败,可能是服务器繁忙,请稍候再试!"; } }
protected void button5_ServerClick(object sender, EventArgs e) { BLL.Member member = new BLL.Member(); string password = Common.GetStringOfForm("txtPassword");//txtPassword.Text.Trim(); if (!member.CompareLoginPassword(UserLoginInfo.UserID, password)) { //Label1.Text = "�Բ���������ľ���������"; CommonManager.Web.RegJs(this, "alert('�Բ���������ľ���������');location.href=location.href;", true); BindInfo(); return; } //�dzƿ��������κ��ַ�������Ҫ��������HTML���룬��ֹ����ľ��ű��ַ���������"'"Ϊ"''"������SQLע��ʽ���� string nickname = Server.HtmlEncode(Common.GetStringOfForm("nickname").Replace("'", "''")); string sex = Common.FilterString(Common.GetStringOfForm("sex")); string pwd = Common.FilterString(Common.GetStringOfForm("pwd")); string email = Common.FilterString(Common.GetStringOfForm("email")); string mobile = Common.FilterString(Common.GetStringOfForm("mobile")); string logoid = Common.FilterString(Common.GetStringOfForm("hidLogoID")); string qqnum = Common.FilterString(Common.GetStringOfForm("qqnum")); logoid = member.SetLogoID(Convert.ToInt32(sex.Trim()), Convert.ToInt32(logoid.Trim())).ToString(); string _address = Server.HtmlEncode( CommonManager.Web.RequestForm( "txtAddress", "" ) ); string _province = CommonManager.Web.RequestForm( "hidProvince", "" ); string _city = CommonManager.Web.RequestForm( "hidCity", "" ); string _occu = CommonManager.Web.RequestForm( "txtOccuPation", "" ); //int iRows = member.UpdateBaseInfo(UserLoginInfo.UserID, pwd, nickname, int.Parse(logoid), int.Parse(sex), email, mobile, qqnum); int iRows = member.UpdateBaseInfo( UserLoginInfo.UserID, pwd, nickname, int.Parse( logoid ), int.Parse( sex ), email, mobile, _occu, _province, _city, _address,qqnum); if (iRows > 0) { //Label1.Text = "�����ijɹ���" + DateTime.Now; CommonManager.Web.RegJs(this, "alert('�����ijɹ���');location.href=location.href;", true); BindInfo(); /*if (Convert.ToInt32(logoid.Trim()) <= BLL.Member.LogoId_Const2) { //trImgType.Attributes.Add("style", "display:none"); //tbCust.Attributes.Add("style", "display:none"); }*/ } else { //Label1.Text = "��Ǹ��������ʧ�ܣ������Ƿ�������æ�����Ժ����ԣ�"; CommonManager.Web.RegJs(this, "alert('��Ǹ��������ʧ�ܣ������Ƿ�������æ�����Ժ����ԣ�');location.href=location.href;", true); } }