/// <summary> /// 添加用户 /// </summary> /// <param name="name">Name</param> /// <param name="pass">Pass</param> /// <param name="question">Question</param> /// <param name="answer">Answer</param> /// <returns>bool</returns> public static bool AddCustomer(string name, string pass, string question, string answer) { try { string sql = "insert into tb_customer(customerName,customerPass,customerRegDate,customerQuestion,customerAnswer) values(?name,?pass,now(),?question,?answer);"; MySqlParameter[] para = new MySqlParameter[4]; para[0] = new MySqlParameter("?name", name); para[1] = new MySqlParameter("?pass", DAL_Safety.GetMD5(pass)); para[2] = new MySqlParameter("?question", question); para[3] = new MySqlParameter("?answer", DAL_Safety.EncodeBase64(answer)); int ret = DAL_MysqlHelper.ExecuteNonQuery(sql, para); if (ret == 1) { return(true); } else { return(false); } } catch (Exception e) { throw e; } }
/// <summary> /// 判断用户输入的密保问题是否正确 /// </summary> /// <param name="name">Name</param> /// <param name="answer">Answer(输入的答案)</param> /// <returns>bool</returns> public static bool QueryCustomerQuestionAnswerMathch(string name, string answer) { try { string sql = "select customerName from tb_customer where customerName=?name and customerAnswer=?answer;"; MySqlParameter[] para = new MySqlParameter[2]; para[0] = new MySqlParameter("?name", name); para[1] = new MySqlParameter("?answer", DAL_Safety.EncodeBase64(answer)); Object obj = DAL_MysqlHelper.ExecuteScalar(sql, para); if (Equals(obj, null)) { return(false); } else { return(true); } } catch (Exception e) { throw e; } }
/// <summary> /// 更新密保问题 /// </summary> /// <param name="name">Name</param> /// <param name="question">Question</param> /// <param name="answer">Answer</param> /// <returns>bool</returns> public static bool UpdateQuestion(string name, string question, string answer) { try { string sql = "update tb_customer set customerQuestion=?question,customerAnswer=?answer where customerName=?name;"; MySqlParameter[] para = new MySqlParameter[3]; para[0] = new MySqlParameter("?question", question); para[1] = new MySqlParameter("?answer", DAL_Safety.EncodeBase64(answer)); para[2] = new MySqlParameter("?name", name); int ret = DAL_MysqlHelper.ExecuteNonQuery(sql, para); if (ret == 1) { return(true); } else { return(false); } } catch (Exception e) { throw e; } }