post.aspx.cs
字号:
using System;
using System.Collections;
using System.ComponentModel;
using System.Data;
using System.Data.SqlClient;
using System.Drawing;
using System.Web;
using System.Web.SessionState;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.HtmlControls;
using System.Xml;
namespace bbs
{
/// <summary>
/// Summary description for post.
/// </summary>
public class post : System.Web.UI.Page
{
protected System.Web.UI.WebControls.Button Button1;
protected System.Web.UI.WebControls.RequiredFieldValidator RequiredFieldValidator1;
protected System.Web.UI.WebControls.TextBox title;
protected System.Web.UI.WebControls.TextBox content;
protected System.Web.UI.WebControls.Panel Panel1;
protected System.Web.UI.WebControls.HyperLink HyperLink1;
protected System.Web.UI.WebControls.Panel Panel2;
protected System.Web.UI.WebControls.RequiredFieldValidator RequiredFieldValidator2;
private void Page_Load(object sender, System.EventArgs e)
{
string thisURL = "http://" + Request.ServerVariables["SERVER_NAME"].ToString() + Request.ServerVariables["SCRIPT_NAME"].ToString();
if(!IsAuthed())
{
Response.Redirect("login.aspx?returnurl=" + thisURL + "?board=" + Request["board"]);
}
else if(!CheckUser())
{
//用户可用分不足
this.Panel1.Visible = false;
this.Panel2.Visible = true;
this.HyperLink1.NavigateUrl = "list.aspx?board=" + Request["board"];
}
}
private bool CheckUser()
{
SqlConnection conn = new SqlConnection((string)Application["ConnectionString"]);
conn.Open();
string sql = "select money from Users where ID = " + Session["userid"].ToString();
SqlCommand cmd = new SqlCommand(sql,conn);
SqlDataReader reader = cmd.ExecuteReader();
int UserScore = 0;
try
{
reader.Read();
UserScore = reader.GetInt32(0);
}
catch
{
Response.Write("数据库读写错误");
Response.End();
}
finally
{
reader.Close();
cmd.Dispose();
conn.Close();
}
conn.Open();
sql = "select Score from board where ID = " + Request["board"];
cmd = new SqlCommand(sql,conn);
reader = cmd.ExecuteReader();
int BoardScore = 0;
try
{
reader.Read();
BoardScore = reader.GetInt32(0);
}
catch
{
Response.Write("数据库读写错误");
Response.End();
}
finally
{
reader.Close();
cmd.Dispose();
conn.Close();
}
if(UserScore < BoardScore)
return false;
else
return true;
}
private bool IsAuthed()
{
if(Session["userid"] != null)
return true;
else
return false;
}
#region Web Form Designer generated code
override protected void OnInit(EventArgs e)
{
//
// CODEGEN: This call is required by the ASP.NET Web Form Designer.
//
InitializeComponent();
base.OnInit(e);
}
/// <summary>
/// Required method for Designer support - do not modify
/// the contents of this method with the code editor.
/// </summary>
private void InitializeComponent()
{
this.Button1.Click += new System.EventHandler(this.Button1_Click);
this.Load += new System.EventHandler(this.Page_Load);
}
#endregion
private void Button1_Click(object sender, System.EventArgs e)
{
if(Page.IsValid)
{
SqlConnection conn = new SqlConnection((string)Application["ConnectionString"]);
conn.Open();
string sql = "select TopicCount from Data";
SqlCommand cmd = new SqlCommand(sql,conn);
SqlDataReader reader = cmd.ExecuteReader();
int count = 0;
try
{
if(reader.Read())
count = Int32.Parse(reader["topicCount"].ToString());
}
catch
{
Response.Write("数据库读写出错");
Response.End();
return;
}
finally
{
reader.Close();
cmd.Dispose();
conn.Close();
}
WriteXmlFile(count);
WriteDataBase(count);
UpdateDataBase();
conn.Open();
sql = "update Data set TopicCount = TopicCount + 1";
cmd = new SqlCommand(sql,conn);
try
{
cmd.ExecuteNonQuery();
}
catch
{
Response.Write("数据库读写出错");
}
finally
{
cmd.Dispose();
conn.Close();
Response.Redirect("list.aspx?board=" + Request["board"]);
}
}
}
private void WriteXmlFile(int count)
{
XmlDocument doc = new XmlDocument();
XmlTextReader reader = new XmlTextReader(Server.MapPath(".") + "\\message.xml");
doc.Load(reader);
XmlElement message;
XmlNode root = doc.DocumentElement;
string filename = count.ToString();
message = doc.CreateElement("FileName");
message.InnerText = filename + ".xml";
root.AppendChild(message);
//写入标题
message = doc.CreateElement("Title");
message.InnerText = this.title.Text;
root.AppendChild(message);
message = doc.CreateElement("Board");
message.InnerText = Request["board"];
root.AppendChild(message);
message = doc.CreateElement("Status");
message.InnerText = "未解决";
root.AppendChild(message);
//写入发贴时间
message = doc.CreateElement("PostTime");
message.InnerText = DateTime.Now.ToString();
root.AppendChild(message);
//内容
message = doc.CreateElement("Content");
message.InnerText = this.content.Text;
root.AppendChild(message);
SqlConnection conn = new SqlConnection((string)Application["ConnectionString"]);
conn.Open();
string sql = "select * from Users where ID = " + Session["userid"].ToString();
SqlCommand cmd = new SqlCommand(sql,conn);
SqlDataReader sqlreader = cmd.ExecuteReader();
try
{
sqlreader.Read();
//作者信息
XmlElement poster = doc.CreateElement("Poster");
root.AppendChild(poster);
message = doc.CreateElement("ID");
message.InnerText = sqlreader["ID"].ToString();
poster.AppendChild(message);
message = doc.CreateElement("UserName");
message.InnerText = sqlreader["UserName"].ToString();
poster.AppendChild(message);
message = doc.CreateElement("Email");
message.InnerText = sqlreader["Email"].ToString();
poster.AppendChild(message);
SqlConnection connection = new SqlConnection((string)Application["ConnectionString"]);
connection.Open();
string query = "select count(*) from Users where Expert >= " + sqlreader["Expert"].ToString();
SqlCommand command = new SqlCommand(query,connection);
SqlDataReader r = command.ExecuteReader();
try
{
r.Read();
string rate;
if(r.GetInt32(0) < 100)
rate = "第" + r.GetInt32(0).ToString() + "名";
else
rate = "---";
message = doc.CreateElement("Rate");
message.InnerText = rate;
poster.AppendChild(message);
}
catch
{
Response.Write("数据库读写出错");
Response.End();
return;
}
finally
{
r.Close();
command.Dispose();
connection.Close();
}
}
catch
{
Response.Write("数据库读写出错");
Response.End();
return;
}
finally
{
conn.Close();
cmd.Dispose();
sqlreader.Close();
}
XmlTextWriter xmlWriter = new XmlTextWriter(Server.MapPath(".") + "\\topic\\" + filename + ".xml",null);
xmlWriter.Formatting = Formatting.Indented;
try
{
doc.Save(xmlWriter);
}
catch
{
Response.Write("数据库读写出错");
Response.End();
return;
}
xmlWriter.Close();
reader.Close();
}
private void WriteDataBase(int count)
{
SqlConnection conn = new SqlConnection((string)Application["ConnectionString"]);
conn.Open();
string sql = "insert into BBS(Title,FileName,PostUser,Board) values('" + this.title.Text + "','" + count.ToString() + "','" + Session["userid"].ToString() + "'," + Request["Board"] + ")";
SqlCommand cmd = new SqlCommand(sql,conn);
try
{
cmd.ExecuteNonQuery();
}
catch
{
Response.Write("数据库读写出错");
Response.End();
}
}
private void UpdateDataBase()
{
SqlConnection conn = new SqlConnection((string)Application["ConnectionString"]);
conn.Open();
string sql = "select Score from Board where id = " + Request["board"];
SqlCommand cmd = new SqlCommand(sql,conn);
SqlDataReader reader = cmd.ExecuteReader();
int BoardScore =0;
try
{
reader.Read();
BoardScore = reader.GetInt32(0);
}
catch
{
Response.Write("数据库读写错误");
Response.End();
}
finally
{
reader.Close();
cmd.Dispose();
conn.Close();
}
conn.Open();
sql = "update Users set Score = Score - " + BoardScore + " where ID = " + Session["userid"];
cmd = new SqlCommand(sql,conn);
try
{
cmd.ExecuteNonQuery();
}
catch
{
Response.Write("数据库读写错误");
}
finally
{
cmd.Dispose();
conn.Close();
}
}
}
}
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -