/// <summary> /// /// </summary> /// <param name="paras"></param> /// <param name="isInnerOrder">内部的排序用相反排序,外部正常排序</param> /// <returns></returns> protected virtual string ProcessOrderBy(Dictionary <string, object> paras, int layer, string defaultSort) { string sql = defaultSort; string sortField = DataConvert.ToString(paras["sortField"]); string sortType = DataConvert.ToString(paras["sortType"]); if (sortField != "") { if (SafeSql.ProcessSqlStr(sortField, 0) && SafeSql.ProcessSqlStr(sortType, 0)) { if (layer == 2) { if (sortType == "asc") { sql = string.Format(" order by {0} desc ", sortField); } else { sql = string.Format(" order by {0} ", sortField); } } else { sql = string.Format(" order by {0} {1} ", sortField, sortType); } } } return(sql); }
protected int AddStoreSite(DataTable dt) { SqliteHelper sqliteDb = new SqliteHelper(); try { sqliteDb.Open(); sqliteDb.BeginTransaction(); sqliteDb.ExecuteNonQuery(@"DELETE FROM StoreSite"); int ret = 0; foreach (DataRow dr in dt.Rows) { string sql = string.Format(@"insert into StoreSite(storeSiteId,storeSiteNo,storeSiteName) values ('{0}','{1}','{2}')", DataConvert.ToString(dr["storeSiteId"]), SafeSql.SafeSqlStr(DataConvert.ToString(dr["storeSiteNo"])), SafeSql.SafeSqlStr(DataConvert.ToString(dr["storeSiteName"])) ); ret += sqliteDb.ExecuteNonQuery(sql); } sqliteDb.Commit(); return(ret); } catch (Exception ex) { sqliteDb.RollBack(); throw ex; } finally { sqliteDb.Close(); } }
/// <summary> /// /// </summary> /// <param name="paras"></param> /// <param name="isInnerOrder">内部的排序用相反排序,外部正常排序</param> /// <returns></returns> private string OrderBy(ListCondition condition, int layer, string defaultSort) { string sql = defaultSort; string sortField = condition.SortField; string sortType = condition.SortType; if (sortField != "") { if (SafeSql.ProcessSqlStr(sortField, 0) && SafeSql.ProcessSqlStr(sortType, 0)) { if (layer == 2) { if (sortType == "asc") { sql = string.Format(" order by {0} desc ", sortField); } else { sql = string.Format(" order by {0} ", sortField); } } else { sql = string.Format(" order by {0} {1} ", sortField, sortType); } } } return(sql); }
protected int AddAssetsCheckDetail(DataTable dt) { SqliteHelper sqliteDb = new SqliteHelper(); string sql; try { sqliteDb.Open(); sqliteDb.BeginTransaction(); sqliteDb.ExecuteNonQuery(@"DELETE FROM AssetsCheckDetail"); int ret = 0; foreach (DataRow dr in dt.Rows) { sql = string.Format(@"insert into AssetsCheckDetail(assetsCheckId,assetsCheckNo,assetsCheckName, assetsId,assetsNo,assetsName,remark,storeSiteId,checkDate,assetsUser) values ('{0}','{1}','{2}','{3}','{4}','{5}','{6}','{7}','{8}','{9}')", DataConvert.ToString(dr["assetsCheckId"]), SafeSql.SafeSqlStr(DataConvert.ToString(dr["assetsCheckNo"])), SafeSql.SafeSqlStr(DataConvert.ToString(dr["assetsCheckName"])), DataConvert.ToString(dr["assetsId"]), SafeSql.SafeSqlStr(DataConvert.ToString(dr["assetsNo"])), SafeSql.SafeSqlStr(DataConvert.ToString(dr["assetsName"])), SafeSql.SafeSqlStr(DataConvert.ToString(dr["remark"])), DataConvert.ToString(dr["storeSiteId"]), DataConvert.ToDateTime(dr["checkDate"]).ToString("yyyy-MM-dd"), DataConvert.ToString(dr["assetsUser"]) ); ret += sqliteDb.ExecuteNonQuery(sql); } sqliteDb.Commit(); return(ret); } catch (Exception ex) { sqliteDb.RollBack(); throw ex; } finally { sqliteDb.Close(); } }