/// <summary>
/// 登录检验
/// </summary>
public string Login(string loginname, string password)
{
StringBuilder strSql = new StringBuilder();
strSql.Append("select id from admin");
strSql.Append(" where userId=@loginname and password=@password");
SqlParameter[] parameters = {
new SqlParameter("@loginname", SqlDbType.VarChar,50),
new SqlParameter("@password", SqlDbType.VarChar,50)
};
parameters[0].Value = loginname;
parameters[1].Value = DLL.TOOL.Strings.Encrypt(password);
//parameters[1].Value = password;
if (DLL.DB.SQLHelper.DataSetSelect(strSql.ToString(), parameters).Tables[0].Rows.Count == 0)
{
return "";
}
else
{
DLL.Model.admin user = new DLL.DAL.admin().GetModel(int.Parse(DLL.DB.SQLHelper.FastSelect(strSql.ToString(), parameters)));
String name = user.username;
System.Web.HttpContext.Current.Session["Username"] = name;
System.Web.HttpContext.Current.Session["Userid"] = user.id;
return "List_equipment.aspx";
}
}
/// <summary>
/// 根据id获取用户名
/// </summary>
public String getname(int id)
{
DLL.Model.admin admin = new DLL.DAL.admin().GetModel(id);
return admin.username;
}
