public int loginAndGetUser(string name, string pwd, string company)
{
string sql = "select * from yh_jinxiaocun_user where name = '" + name + "' and password = '******' and gongsi = '" + company + "'";
ms = new Order.Common.MySqlHelper(sqlStr);
MySqlDataReader read = ms.ExecuteReader(sql);
if (read.HasRows)
{
clsuserinfo user = new clsuserinfo();
while (read.Read())
{
user.Order_id = read["_id"].ToString();
user.AdminIS = read["AdminIS"].ToString();
user.Btype = read["Btype"].ToString();
user.Createdate = read["Createdate"].ToString();
user.gongsi = read["gongsi"].ToString();
user.jigoudaima = read["jigoudaima"].ToString();
user.name = read["name"].ToString();
user.password = read["password"].ToString();
user.mibao = read["mi_bao"].ToString();
user.denglushijian = DateTime.Now.ToString();
}
if (user.Btype.Equals("锁定"))
{
return(-1);
}
System.Web.HttpContext.Current.Session["user"] = user;
}
return(read.HasRows ? 1 : 0);
}
public List <string> getShouHuo(string name, string gongsi)
{
ms = new Order.Common.MySqlHelper(sqlStr);
string sql = "select beizhu from yh_jinxiaocun_chuhuofang where finduser = '******' and gongsi = '" + gongsi + "'";
MySqlDataReader reader = ms.ExecuteReader(sql);
List <string> gonghuo = new List <string>();
while (reader.Read())
{
gonghuo.Add(reader["beizhu"].ToString());
}
return(gonghuo);
}
