default.aspx.cs

图书销售系统源码

using System;
using System.Data;
using System.Configuration;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.Data.SqlClient;


public partial class _Default : System.Web.UI.Page 
{
    protected void Page_Load(object sender, EventArgs e)
    {
        if (!IsPostBack)
        {
            tbx_user.Text = "";
            tbx_pwd.Text = "";
            //读取数据库连接字符串
            string settings = Convert.ToString(ConfigurationManager.ConnectionStrings["SqlServices"]);
            //创建数据库连接
            SqlConnection myconn = new SqlConnection(settings);
            //打开数据库连接
            myconn.Open();

            SqlCommand mycmd = new SqlCommand("MostSoldBooks", myconn);

            SqlDataReader result = mycmd.ExecuteReader();

            dl_mostsold.DataSource = result;
            dl_mostsold.DataBind();
            lbl_msg1.Visible = false;
            lbl_msg2.Visible = false;
            if (Session["UserName"] == null || Session["UserName"].ToString() == "")
            {
                P_Login.Visible = true;
                P_SuccessLogin.Visible = false;
            }
            else
            {
                P_Login.Visible = false;
                P_SuccessLogin.Visible = true;
                lbl_user.Text = Session["UserName"].ToString();
                lbl_rank.Text = Session["Level"].ToString();
            }
        }
    }   


    protected void btn_login_Click(object sender, EventArgs e)
    {
        string username = tbx_user.Text;
        string password = tbx_pwd.Text;
        if (username == "")
        {
            lbl_msg1.Visible = true;
            lbl_msg1.Text = "请输入用户名";
            
        }
        else if (password == "")
        {
            lbl_msg2.Visible = true;
            lbl_msg2.Text = "请输入密码";
        }
        else
        {
            //读取数据库连接字符串
            string settings = Convert.ToString(ConfigurationManager.ConnectionStrings["SqlServices"]);
            //创建数据库连接对象
            SqlConnection myconn = new SqlConnection(settings);
            //打开数据库连接
            myconn.Open();
            //读取用户信息
            string mysql = "select * from users Where UserName=" + "'" + username + "'" + "And Password=" + "'" + password + "'";
            //Response.Write(mysql);
            //Response.End();
            //创建命令对象
            SqlCommand mycmd = new SqlCommand(mysql, myconn);
            //创建适配器并执行命令
            SqlDataReader mydr = mycmd.ExecuteReader();
            try
            {
                if (mydr.Read())
                {
                    //把用户名写入session对象
                    Session["UserName"] = mydr[1];
                    //把权限编号写入session对象
                    Session["Level"] = mydr["Level"].ToString();
                    //隐藏登录信息
                    P_Login.Visible = false;
                    //显示用户信息
                    P_SuccessLogin.Visible = true;
                    lbl_user.Text = Session["UserName"].ToString();
                    lbl_rank.Text = Session["Level"].ToString();

                    string userid = mydr["UserID"].ToString();
                    Session["UserID"] = userid;
                    //把用户名称添加到身份认证凭据中
                    //FormsAuthentication.RedirectFromLoginPage(userid, true); 
                    //FormsAuthentication.
                    BookStore LoginDB = new BookStore();
                    string tempCartID = LoginDB.GetShoppingCartId();
                    LoginDB.TransplantShoppingCart(tempCartID, userid);
                }
                else
                {
                    //显示错误信息
                    lbl_msg2.Visible = true;
                    lbl_msg2.Text = "用户名或密码错误";
                }
            }
            finally
            {
                //关闭操作
                mydr.Close();
                myconn.Close();
            }
        }
    }
}