📄 adminclass.cs
字号:
using System;
using System.Data;
using System.Configuration;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.Data.SqlClient;
/// <summary>
/// AdminClass 的摘要说明
/// </summary>
public class AdminClass
{
public AdminClass() { }
private static string strCon = ConfigurationSettings.AppSettings["ConnectionString"].ToString();
/// <summary>
/// 添加管理员
/// </summary>
/// <param name="adminName"></param>
/// <param name="adminPass"></param>
/// <returns></returns>
public int AdminAdd(string adminName,string adminPass)
{
int role = 0;
SqlParameter[] paras = { new SqlParameter("@AdminName",adminName),new SqlParameter("@AdminPass",adminPass),new SqlParameter("@Role",role),new SqlParameter("@Result",SqlDbType.Int)};
paras[3].Direction = ParameterDirection.Output;
Real.DAL.SqlHelper.ExecuteNonQuery(strCon, CommandType.StoredProcedure, "A_AdminAdd", paras);
int result = Convert.ToInt32(paras[3].Value);
return result;
}
/// <summary>
/// 删除管理员
/// </summary>
/// <param name="adminId"></param>
/// <returns></returns>
public void AdminDelete(int adminId)
{
string sql = "Delete From R_Admin Where AdminId ="+adminId;
Real.DAL.SqlHelper.ExecuteNonQuery(strCon, CommandType.Text,sql, null);
}
/// <summary>
/// 修改管理员密码
/// </summary>
/// <param name="adminName"></param>
/// <param name="adminJiuPass"></param>
/// <param name="adminXinPass"></param>
/// <returns></returns>
public int AdminModifyPass(string adminName,string adminJiuPass,string adminXinPass)
{
SqlParameter[] paras = { new SqlParameter("@AdminName",adminName),new SqlParameter("@AdminJiuPass",adminJiuPass),new SqlParameter("@AdminXinPass",adminXinPass),new SqlParameter("@Result",SqlDbType.Int)};
paras[3].Direction = ParameterDirection.Output;
Real.DAL.SqlHelper.ExecuteNonQuery(strCon, CommandType.StoredProcedure, "A_AdminModifyPass", paras);
return Convert.ToInt32(paras[3].Value);
}
/// <summary>
/// 后台登陆
/// </summary>
/// <param name="adminName"></param>
/// <param name="adminPass"></param>
/// <returns></returns>
public SqlDataReader AdminLogin(string adminName,string adminPass)
{
string sql = "Select Role From R_Admin Where AdminName = '"+adminName+"' and AdminPass = '"+adminPass+"'";
SqlDataReader sdr = BindData.ExecuteDataReader(sql);
return sdr;
}
/// <summary>
/// 将准备插入数据库的信息的危险字符进行处理
/// </summary>
/// <param name="obj">要被处理的信息</param>
/// <returns>返回一个字符串</returns>
public static string KeepFormat(string obj)
{
string code = obj;
code = code.Replace(",", "");
code = code.Replace(";", "");
code = code.Replace("'", "");
code = code.Replace(":", "");
code = code.Replace("/", "");
code = code.Replace("|", "");
code = code.Replace("?", "");
code = code.Replace(">", "");
code = code.Replace("<", "");
code = code.Replace("*", "");
code = code.Replace("(", "");
code = code.Replace("@", "");
code = code.Replace("!", "");
code = code.Replace("#", "");
code = code.Replace("$", "");
code = code.Replace("%", "");
code = code.Replace("^", "");
code = code.Replace("&", "");
code = code.Replace(")", "");
code = code.Replace("-", "");
code = code.Replace("+", "");
code = code.Replace("=", "");
code = code.Replace("{", "");
code = code.Replace("}", "");
code = code.Replace("[", "");
code = code.Replace("]", "");
code = code.Replace(" ", "");
//将要插入的数据中的危险字符转换成ASCII存放到数据库中,然后去出来就可以成了空格,换行等,这样就保证了在文本里输入的格式
code = code.Replace("&", "&");
code = code.Replace("<", "<");
code = code.Replace(">", ">");
code = code.Replace(((char)13).ToString(), "<br>");
code = code.Replace(((char)32).ToString(), " ");
code = code.Replace(((char)9).ToString(), " ");
code = code.Replace(((char)39).ToString(), "'");
code = code.Replace(((char)34).ToString(), """);
code = code.Replace(((char)34).ToString(), """);
return code;
}
}
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -