public IEnumerable <object> QueryProfession([FromBody] QProNameParModel qpnpm) { try { var account = HttpContext.Session.GetString("user_Account"); var localProvince = HttpContext.Session.GetString("user_Province"); if (account == null || localProvince == null) { return(new[] { new { msg = "not login" } }); } if (Server.AccountHandle(account) == 0) { return(new[] { new { msg = "times exceeded" } }); } var re = NewHistoryDataQueryServer.QueryProfession(qpnpm, localProvince); return(re); } catch (Exception e) { return(new[] { e.Message }); } }
public IEnumerable <object> QueryProfession([FromBody] QProNameParModel qpnpm, string localProvince) { try { var addr = Server.GetUserIp(Request.HttpContext); if (Server.IPHandle(addr) == 0) { return(new[] { "your ip can't using our api , please contact administrator" }); } var re = NewHistoryDataQueryServer.QueryProfession(qpnpm, localProvince); return(re); } catch (Exception e) { return(new[] { e.Message }); } }
/// <summary> /// 精确查询专业 /// </summary> /// <param name="qpnpm">查询参数</param> /// <param name="localProvince">生源地</param> /// <returns>查询结果</returns> public static IEnumerable <object> QueryProfession(QProNameParModel qpnpm, string localProvince) { using (var con = new SqlConnection(Server.SqlConString)) { if (qpnpm.classes == null || qpnpm.year == 0 || qpnpm.rScore == 0) { return(new List <object> { new { code = "306", msg = "No necessary parameters" } }); } string sqlUniLocal = " ", sqlProBatch = " "; if (qpnpm.uniLocal != null) { sqlUniLocal = " and University.address = '" + qpnpm.uniLocal + "' "; } if (qpnpm.proBatch != null) { sqlProBatch = " and batch = '" + qpnpm.proBatch + "' "; } con.Open(); var re = new List <object>(); var sqlStr = "SELECT DISTINCT proName , " + Server.Province[localProvince] + "Admit.uniName , address , batch , proMin , proAve , proMinP , proNum " + "FROM " + Server.Province[localProvince] + "Admit JOIN University ON " + Server.Province[localProvince] + "Admit.uniName = University.uniName " + "WHERE province = '" + localProvince + "' AND year = " + qpnpm.year + " AND classes = '" + qpnpm.classes + "'" + sqlUniLocal + sqlProBatch + "AND (proMin <= " + qpnpm.rScore + " AND proMin >= " + qpnpm.lScore + " ) AND proname like '%" + qpnpm.proName + "%' ORDER BY proMin"; var sc = new SqlCommand(sqlStr, con); sc.ExecuteNonQuery(); var reader = sc.ExecuteReader(); while (reader.Read()) { re.Add(new { pName = (string)reader[0], uName = (string)reader[1], uAddress = (string)reader[2], pBatch = (string)reader[3], pMin = (int)reader[4], pAve = (decimal)reader[5], pMinP = (int)reader[6], pNum = (int)reader[7] }); } return(re); } }