/// <summary> /// 添加用户 /// </summary> /// <param name="name">Name</param> /// <param name="pass">Pass</param> /// <param name="question">Question</param> /// <param name="answer">Answer</param> /// <returns>bool</returns> public static bool AddCustomer(string name, string pass, string question, string answer) { try { string sql = "insert into tb_customer(customerName,customerPass,customerRegDate,customerQuestion,customerAnswer) values(?name,?pass,now(),?question,?answer);"; MySqlParameter[] para = new MySqlParameter[4]; para[0] = new MySqlParameter("?name", name); para[1] = new MySqlParameter("?pass", DAL_Safety.GetMD5(pass)); para[2] = new MySqlParameter("?question", question); para[3] = new MySqlParameter("?answer", DAL_Safety.EncodeBase64(answer)); int ret = DAL_MysqlHelper.ExecuteNonQuery(sql, para); if (ret == 1) { return(true); } else { return(false); } } catch (Exception e) { throw e; } }
/// <summary> /// 判断教师用户是否存在。 /// </summary> /// <param name="number">用户名</param> /// <param name="password">密码</param> /// <returns></returns> public static bool teacherExits(string number, string password) { password = DAL_Safety.getMD5(password); object obj = null; try { string sql = "select username from teacher where username=?1 and password=?2;"; MySqlParameter[] para = new MySqlParameter[2]; para[0] = new MySqlParameter("?1", number); para[1] = new MySqlParameter("?2", password); obj = DAL_MysqlHelper.ExecuteScalar(sql, para); } catch (Exception e) { LogWriter.writeLine(@"C:\WEB_ASP\logs\DAL.log", "studentExits:" + e.Message); return(false); } if (Equals(obj, null)) { return(false); } else { return(true); } }
/// <summary> /// 修改一个学生信息(包括密码、年龄、年纪、性别、专业)。 /// </summary> /// <param name="student">修改后的学生信息</param> /// <returns></returns> public static bool modifyStudent(Student student) { string username = student.username; string password = student.password; if (password.Length != 0) { password = DAL_Safety.getMD5(password); } string age = student.age; string grade = student.grade; string sex = student.sex; string major = student.major; try { string sql = ""; int res = 0; if (password.Length != 0) { sql = "update users set password=?1, grade=?2, age=?3, sex=?4, major=?5 where username=?6;"; MySqlParameter[] para = new MySqlParameter[6]; para[0] = new MySqlParameter("?1", password); para[1] = new MySqlParameter("?2", grade); para[2] = new MySqlParameter("?3", age); para[3] = new MySqlParameter("?4", sex); para[4] = new MySqlParameter("?5", major); para[5] = new MySqlParameter("?6", username); res = DAL_MysqlHelper.ExecuteNonQuery(sql, para); } else { sql = "update users set grade=?1, age=?2, sex=?3, major=?4 where username=?5;"; MySqlParameter[] para = new MySqlParameter[5]; para[0] = new MySqlParameter("?1", grade); para[1] = new MySqlParameter("?2", age); para[2] = new MySqlParameter("?3", sex); para[3] = new MySqlParameter("?4", major); para[4] = new MySqlParameter("?5", username); res = DAL_MysqlHelper.ExecuteNonQuery(sql, para); } if (res > 0) { return(true); } else { return(false); } } catch (Exception e) { LogWriter.writeLine("DAL.log", "modifyStudent:" + e.Message); return(false); } }
/// <summary> /// 修改教师信息。 /// </summary> /// <param name="teacher">修改后的教师实体信息</param> /// <returns></returns> public static bool modifyTeacher(Teacher teacher) { string username = teacher.username; string password = teacher.password; if (password.Length != 0) { password = DAL_Safety.getMD5(password); } string age = teacher.age; string sex = teacher.sex; try { string sql = ""; int res = 0; if (password.Length != 0) { sql = "update teacher set password=?1, age=?2, sex=?3 where username=?4;"; MySqlParameter[] para = new MySqlParameter[4]; para[0] = new MySqlParameter("?1", password); para[1] = new MySqlParameter("?2", age); para[2] = new MySqlParameter("?3", username); para[3] = new MySqlParameter("?4", username); res = DAL_MysqlHelper.ExecuteNonQuery(sql, para); } else { sql = "update teacher set age=?1, sex=?2 where username=?3;"; MySqlParameter[] para = new MySqlParameter[3]; para[0] = new MySqlParameter("?1", age); para[1] = new MySqlParameter("?2", sex); para[2] = new MySqlParameter("?3", username); res = DAL_MysqlHelper.ExecuteNonQuery(sql, para); } if (res > 0) { return(true); } else { return(false); } } catch (Exception e) { LogWriter.writeLine("DAL.log", "modifyTeacher:" + e.Message); return(false); } }
/// <summary> /// 修改密码 /// </summary> /// <param name="name">Name</param> /// <param name="pass">Pass(新)</param> /// <returns>bool</returns> public static bool UpdatePassword(string name, string pass) { try { string sql = "update tb_customer set customerPass=?pass where customerName=?name;"; MySqlParameter[] para = new MySqlParameter[2]; para[0] = new MySqlParameter("?pass", DAL_Safety.GetMD5(pass)); para[1] = new MySqlParameter("?name", name); int ret = DAL_MysqlHelper.ExecuteNonQuery(sql, para); if (ret == 1) { return(true); } else { return(false); } } catch (Exception e) { throw e; } }
/// <summary> /// 判断用户输入的密保问题是否正确 /// </summary> /// <param name="name">Name</param> /// <param name="answer">Answer(输入的答案)</param> /// <returns>bool</returns> public static bool QueryCustomerQuestionAnswerMathch(string name, string answer) { try { string sql = "select customerName from tb_customer where customerName=?name and customerAnswer=?answer;"; MySqlParameter[] para = new MySqlParameter[2]; para[0] = new MySqlParameter("?name", name); para[1] = new MySqlParameter("?answer", DAL_Safety.EncodeBase64(answer)); Object obj = DAL_MysqlHelper.ExecuteScalar(sql, para); if (Equals(obj, null)) { return(false); } else { return(true); } } catch (Exception e) { throw e; } }
/// <summary> /// 查询用户是否存在(登录用) /// </summary> /// <param name="name">Name</param> /// <param name="pass">Pass</param> /// <returns>bool</returns> public static bool QueryCustomerExists(string name, string pass) { try { string sql = "select customerName from tb_customer where customerName=?name and customerPass=?pass;"; MySqlParameter[] para = new MySqlParameter[2]; para[0] = new MySqlParameter("?name", name); para[1] = new MySqlParameter("?pass", DAL_Safety.GetMD5(pass)); Object obj = DAL_MysqlHelper.ExecuteScalar(sql, para); if (Equals(obj, null)) { return(false); } else { return(true); } } catch (Exception e) { throw e; } }
/// <summary> /// 添加管理员 /// </summary> /// <param name="name"></param> /// <param name="pass"></param> /// <returns>bool</returns> public static bool AddManage(string name, string pass) { try { string sql = "insert into tb_manage(managerName,managerPWD) values(?name,?pass);"; MySqlParameter[] para = new MySqlParameter[2]; para[0] = new MySqlParameter("?name", name); para[1] = new MySqlParameter("?pass", DAL_Safety.GetMD5(pass)); int ret = DAL_MysqlHelper.ExecuteNonQuery(sql, para); if (ret == 1) { return(true); } else { return(false); } } catch (Exception e) { throw e; } }
/// <summary> /// 更新密保问题 /// </summary> /// <param name="name">Name</param> /// <param name="question">Question</param> /// <param name="answer">Answer</param> /// <returns>bool</returns> public static bool UpdateQuestion(string name, string question, string answer) { try { string sql = "update tb_customer set customerQuestion=?question,customerAnswer=?answer where customerName=?name;"; MySqlParameter[] para = new MySqlParameter[3]; para[0] = new MySqlParameter("?question", question); para[1] = new MySqlParameter("?answer", DAL_Safety.EncodeBase64(answer)); para[2] = new MySqlParameter("?name", name); int ret = DAL_MysqlHelper.ExecuteNonQuery(sql, para); if (ret == 1) { return(true); } else { return(false); } } catch (Exception e) { throw e; } }