/// <summary>
/// 增加一条数据
/// </summary>
/// <param name="model">Member对象</param>
public int Add(ClassLibrary.Model.Member model)
{
StringBuilder strSql = new StringBuilder();
strSql.Append(string.Format("INSERT INTO {0}(", table));
strSql.Append("UserName,Password,Nickname,Telphone,QQ,SafetyQuestion,SafetyAnswer,CreatedTime");
strSql.Append(") VALUES (");
strSql.Append("@UserName,@Password,@Nickname,@Telphone,@QQ,@SafetyQuestion,@SafetyAnswer,@CreatedTime)");
SqlParameter[] parameters =
{
new SqlParameter("@UserName", SqlDbType.NVarChar, 100),
new SqlParameter("@Password", SqlDbType.VarChar, 32),
new SqlParameter("@Nickname", SqlDbType.NVarChar, 40),
new SqlParameter("@Telphone", SqlDbType.NVarChar, 40),
new SqlParameter("@QQ", SqlDbType.NVarChar, 40),
new SqlParameter("@SafetyQuestion", SqlDbType.NVarChar, 100),
new SqlParameter("@SafetyAnswer", SqlDbType.NVarChar, 100),
new SqlParameter("@CreatedTime", SqlDbType.DateTime, 8)
};
parameters[0].Value = model.UserName;
parameters[1].Value = model.Password;
parameters[2].Value = model.Nickname;
parameters[3].Value = model.Telphone;
parameters[4].Value = model.QQ;
parameters[5].Value = model.SafetyQuestion;
parameters[6].Value = model.SafetyAnswer;
parameters[7].Value = model.CreatedTime;
return(SQLHelper.Execute(strSql.ToString(), parameters));
}
/// <summary>
/// 得到一个对象实体
/// </summary>
/// <param name="ID">主键ID</param>
/// <returns>Member对象</returns>
public ClassLibrary.Model.Member GetModel(int ID)
{
StringBuilder strSql = new StringBuilder();
strSql.Append("SELECT ID,UserName,Password,Nickname,Telphone,QQ,SafetyQuestion,SafetyAnswer,CreatedTime");
strSql.Append(" FROM ");
strSql.Append(table);
strSql.Append(string.Format(" WHERE {0}=@{0}", pk));
SqlParameter[] parameters =
{
new SqlParameter("@" + pk, SqlDbType.Int, 4)
};
parameters[0].Value = ID;
ClassLibrary.Model.Member model = new ClassLibrary.Model.Member();
DataTable dt = SQLHelper.Query(strSql.ToString(), parameters);
model.ID = ID;
if (dt.Rows.Count > 0)
{
if (dt.Rows[0]["UserName"] != DBNull.Value)
{
model.UserName = Convert.ToString(dt.Rows[0]["UserName"]);
}
if (dt.Rows[0]["Password"] != DBNull.Value)
{
model.Password = Convert.ToString(dt.Rows[0]["Password"]);
}
if (dt.Rows[0]["Nickname"] != DBNull.Value)
{
model.Nickname = Convert.ToString(dt.Rows[0]["Nickname"]);
}
if (dt.Rows[0]["Telphone"] != DBNull.Value)
{
model.Telphone = Convert.ToString(dt.Rows[0]["Telphone"]);
}
if (dt.Rows[0]["QQ"] != DBNull.Value)
{
model.QQ = Convert.ToString(dt.Rows[0]["QQ"]);
}
if (dt.Rows[0]["SafetyQuestion"] != DBNull.Value)
{
model.SafetyQuestion = Convert.ToString(dt.Rows[0]["SafetyQuestion"]);
}
if (dt.Rows[0]["SafetyAnswer"] != DBNull.Value)
{
model.SafetyAnswer = Convert.ToString(dt.Rows[0]["SafetyAnswer"]);
}
if (dt.Rows[0]["CreatedTime"] != DBNull.Value)
{
model.CreatedTime = Convert.ToDateTime(dt.Rows[0]["CreatedTime"]);
}
}
return(model);
}
private void BindInfo()
{
userName = userName.Replace(" ", "").Replace("'", "");
List <ClassLibrary.Model.Member> list = memberBLL.GetModelList("UserName='******'");
if (list.Count == 0)
{
Response.Write("<script>alert('用户不存在,请重新登录');location.href='/login/';</script>");
}
else
{
member = list[0];
}
}
//注册
private void AddUser()
{
ClassLibrary.BLL.Member bll = new ClassLibrary.BLL.Member();
ClassLibrary.Model.Member model = new ClassLibrary.Model.Member();
model.UserName = HttpUtility.HtmlEncode(Function.GetFormString("UserName"));
model.Password = Function.MD5(Function.GetFormString("Password"));
model.Nickname = HttpUtility.HtmlEncode(Function.GetFormString("Nickname"));
model.Telphone = HttpUtility.HtmlEncode(Function.GetFormString("Telphone"));
model.QQ = HttpUtility.HtmlEncode(Function.GetFormString("QQ"));
model.SafetyQuestion = HttpUtility.HtmlEncode(Function.GetFormString("SafetyQuestion"));
model.SafetyAnswer = HttpUtility.HtmlEncode(Function.GetFormString("SafetyAnswer"));
model.CreatedTime = DateTime.Now;
if (string.IsNullOrEmpty(model.UserName))
{
Response.Write("<script>alert('资料填写不完整,请重新输入。');location.href='/register/';</script>");
}
else
{
if (Session["ValidateCode"] == null)
{
Response.Write("<script>alert('验证码输入错误,请重新输入。');login.href='/register/';</script>");
}
else if (Request.Form["code"] != Session["ValidateCode"].ToString())
{
Response.Write("<script>alert('验证码输入错误,请重新输入。');history.back(-1);</script>");
}
else
{
if (bll.GetModelList("UserName='******'").Count > 0)
{
Response.Write("<script>alert('您输入的Email地址已被注册,请重新输入。');history.back(-1);</script>");
}
else
{
if (bll.Add(model) > 0)
{
Response.Write("<script>alert('恭喜您,注册成功!请登录。。。');location.href='/login/';</script>");
}
else
{
Response.Write("<script>alert('注册失败,您输入的数据有误,请重试。');location.href='/register/';</script>");
}
}
}
}
}
/// <summary>
/// 更新一条数据
/// </summary>
/// <param name="model">Member对象</param>
/// <returns>影响行数</returns>
public int Update(ClassLibrary.Model.Member model)
{
StringBuilder strSql = new StringBuilder();
strSql.Append(string.Format("UPDATE {0} SET ", table));
strSql.Append("UserName=@UserName,");
strSql.Append("Password=@Password,");
strSql.Append("Nickname=@Nickname,");
strSql.Append("Telphone=@Telphone,");
strSql.Append("QQ=@QQ,");
strSql.Append("SafetyQuestion=@SafetyQuestion,");
strSql.Append("SafetyAnswer=@SafetyAnswer,");
strSql.Append("CreatedTime=@CreatedTime");
strSql.Append(" WHERE ID=@ID");
SqlParameter[] parameters =
{
new SqlParameter("@ID", SqlDbType.Int, 4),
new SqlParameter("@UserName", SqlDbType.NVarChar, 100),
new SqlParameter("@Password", SqlDbType.VarChar, 32),
new SqlParameter("@Nickname", SqlDbType.NVarChar, 40),
new SqlParameter("@Telphone", SqlDbType.NVarChar, 40),
new SqlParameter("@QQ", SqlDbType.NVarChar, 40),
new SqlParameter("@SafetyQuestion", SqlDbType.NVarChar, 100),
new SqlParameter("@SafetyAnswer", SqlDbType.NVarChar, 100),
new SqlParameter("@CreatedTime", SqlDbType.DateTime, 8)
};
parameters[0].Value = model.ID;
parameters[1].Value = model.UserName;
parameters[2].Value = model.Password;
parameters[3].Value = model.Nickname;
parameters[4].Value = model.Telphone;
parameters[5].Value = model.QQ;
parameters[6].Value = model.SafetyQuestion;
parameters[7].Value = model.SafetyAnswer;
parameters[8].Value = model.CreatedTime;
return(SQLHelper.Execute(strSql.ToString(), parameters));
}
