protected void btn_save_Click(object sender, EventArgs e) { string UpdateCommand = "UPDATE [smUser] SET [pwd] = @pwd WHERE [userid] = @userid"; SqlParameter[] par = new SqlParameter[2]; par[0] = new SqlParameter("@pwd", SqlDbType.NVarChar, 40); par[0].Value = Entry.EncryptByMd5(txt_newpass1.Text.ToString().Trim()); par[1] = new SqlParameter("@userid", SqlDbType.Int); par[1].Value = Ulable1.TextValue; cUser cus = new cUser(); int val = -10; try { if (this.Page.IsValid == false) { return; } val = cus.ModiUser(UpdateCommand, par); if (val > 0) { Script.AjaxAlert(btn_save, "恭喜您,密码修改成功,请牢记您的密码!"); } } catch { Script.AjaxAlert(btn_save, "对不起,密码修改失败,请联系系统管理员!"); } }
protected int ExcuteInsert() { int val = -10; string InsertCommand = "INSERT INTO [smUser] ([Groupid], [username], [truename], [pwd], [tcreat], [tdeadline], [bfunc], [bdel]) VALUES (@Groupid, @username, @truename, @pwd, @tcreat, @tdeadline, @bfunc, @bdel)"; SqlParameter[] par = new SqlParameter[8]; //生成一个唯一的标识存放在用户表用来区分该条记录 string UserGUID = System.Guid.NewGuid().ToString(); try { par[0] = new SqlParameter("@Groupid", SqlDbType.Int); par[0].Value = Convert.ToInt32(DropDownList1.SelectedItem.Value.ToString().Trim()); par[1] = new SqlParameter("@username", SqlDbType.NVarChar, 400); par[1].Value = UserGUID; par[2] = new SqlParameter("@truename", SqlDbType.NVarChar, 400); par[2].Value = txt_tname.TextValue; par[3] = new SqlParameter("@pwd", SqlDbType.NVarChar, 40); par[3].Value = Entry.EncryptByMd5(txt_pass.Text.ToString().Trim()); par[4] = new SqlParameter("@tcreat", SqlDbType.Date); par[4].Value = IsDate(txt_stDate.Text.ToString().Trim()); par[5] = new SqlParameter("@tdeadline", SqlDbType.Date); par[5].Value = IsDate(txt_endDate.Text.ToString().Trim()); par[6] = new SqlParameter("@bfunc", SqlDbType.Bit); par[6].Value = Convert.ToByte(RadioButtonList1.SelectedItem.Value); par[7] = new SqlParameter("@bdel", SqlDbType.Bit); par[7].Value = Convert.ToByte(RadioButtonList2.SelectedItem.Value); cUser cuser = new cUser(); //插入用户的权限存在风险再循环过程中出现问题就比较麻烦了。 #region 一种老的插入方法 ////---------------------------------------------------- SqlDataSource srcUser = new SqlDataSource(); srcUser.ConnectionString = SqlHelper.GetConnection().ConnectionString; try { //插入用户信息表 val = cuser.ModiUser(InsertCommand, par); Session["UserGUID"] = UserGUID; //插入用户的权限存在风险再循环过程中出现问题就比较麻烦了。 int iiuserid = cUser.GetUserID(UserGUID); //--------------- int checkCount = 0; for (int i = 0; i < check_right.Items.Count; i++) { if (check_right.Items[i].Selected) { checkCount++; } } ParmObject[] pobj = new ParmObject[checkCount]; for (int i = 0; i < pobj.Length; i++) { pobj[i] = new ParmObject(); pobj[i].Cmdtext = "INSERT INTO [smUserRoles] ([userid], [ParentMenuValue]) VALUES ( " + iiuserid + "," + check_right.Items[i].Value + ")"; pobj[i].Par = null; } val = SqlHelper.ExecuteNonQueryByTrans(pobj); //----------------- //for (int i = 0; i < check_right.Items.Count; i++) //{ // if (check_right.Items[i].Selected) // { // srcUser.InsertCommand = "INSERT INTO [smUserRoles] ([userid], [ParentMenuValue]) VALUES ( " + iiuserid + "," + check_right.Items[i].Value + ")"; // srcUser.Insert(); // } //} } catch { } //---------------------------------------------------- #endregion } catch { } return(val); }