/// <summary>
/// 修改类别
/// </summary>
/// <param name="id">类别ID</param>
/// <param name="caName">类别名称</param>
/// <returns></returns>
public static bool Update(CateGory ca)
{
bool flag = false;
//使用参数化SQL防止SQL注入攻击
string sql = "update category set [name]=@name where id=@id";
SqlParameter[] paras = new SqlParameter[]
{
new SqlParameter("@name", ca.Name),
new SqlParameter("@id", ca.ID)
};
int result = SQLHelper.ExecuteNonQuery(sql, paras, CommandType.Text);
if (result > 0)
{
flag = true;
}
return(flag);
}
/// <summary>
/// 修改类别
/// </summary>
/// <param name="id">类别ID</param>
/// <param name="caName">类别名称</param>
/// <returns></returns>
public static bool Update(CateGory ca)
{
return(CateGoryService.Update(ca));
}
