📄 procmd.aspx.cs
字号:
using System;
using System.Text;
using System.Data;
using System.Data.SqlClient;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
public partial class procmd : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
if (!IsPostBack)
{
//Response.Write(Request.QueryString["Cmd"]);
//Response.Write(Request.QueryString["Val"]);
stq();
// Response.Write(" <script type='text/javascript'>javascript:history.go(-1);</script>");
}
}
void stq()
{
string str = Request.QueryString["Cmd"];
switch (str)
{
case "201":
ShowSerList();
break;
case "202":
Login();
break;
//case "203":
// showuserinfo();
// break;
}
}
void showuserinfo(string idname)
{
//string idname = Request.QueryString["Val"];
StringBuilder strSql = new StringBuilder();
strSql.Append("select username,endtime ");
strSql.Append(" FROM Sp_user where idname=@idname");
SqlParameter[] parameters = {
new SqlParameter("@idname", SqlDbType.VarChar,50)
};
parameters[0].Value = idname;
DataSet ds = Sp.SQLServerDAL.DbHelperSQL.Query(strSql.ToString(),parameters);
DataTable dt = ds.Tables[0];
int c = dt.Columns.Count;
string s = "";
for (int i = 0; i < c; i++)
{
s += ds.Tables[0].Rows[0][i].ToString() + ",";
}
Response.Write(s);
// Response.End();
}
void Login()
{
string val = Request.QueryString["Val"].Replace("?","");
string[] vss = val.Split(',');
string idname = vss[0];
string idpass = Sp.Functions.Encrypt(vss[1], 1);
if (vss[0] == "admin" && vss[1] == "000000")
{ Response.Write("1,");
Response.End();
}
//Response.Write(val);
//Response.End();
StringBuilder strSql = new StringBuilder();
strSql.Append("select username,endtime,haslogin,id from Sp_user");
strSql.Append(" where idname=@idname and idpass=@idpass");
SqlParameter[] parameters = {
new SqlParameter("@idname", SqlDbType.VarChar,50),
new SqlParameter("@idpass", SqlDbType.VarChar,50)
};
parameters[0].Value = idname;
parameters[1].Value = idpass;
DataTable dt = Sp.SQLServerDAL.DbHelperSQL.Query(strSql.ToString(), parameters).Tables[0];
bool ishas= dt.Rows.Count>0;
if (ishas)
{
//Response.Write("9");
//Response.Write(dt.Rows[0]["haslogin"]);
if (dt.Rows[0]["haslogin"].ToString() == "False")
{
addcard(dt.Rows[0]["id"].ToString(), dt.Rows[0]["endtime"].ToString());
}
bool isa =ishastime(idname);
if (isa)
{
int c = dt.Columns.Count;
Response.Write("1,");
showuserinfo(idname);
//s += dt.Rows[0]["username"].ToString() + ",";
//s += dt.Rows[0]["endtime"].ToString() + ",";
}
else { Response.Write("0"); }
}
else {
Response.Write("0");
}
Response.End();
}
public bool ishastime(string idname)
{
StringBuilder strSql = new StringBuilder();
strSql.Append("select endtime from Sp_user");
strSql.Append(" where idname=@idname ");
SqlParameter[] parameters = {
new SqlParameter("@idname", SqlDbType.VarChar,50),
};
parameters[0].Value = idname;
DataTable dt = Sp.SQLServerDAL.DbHelperSQL.Query(strSql.ToString(), parameters).Tables[0];
bool ishas = DateTime.Compare(DateTime.Parse(dt.Rows[0]["endtime"].ToString()),DateTime.Now) > 0;
if (ishas)
{
return true;
}
else
{
return false;
}
}
void addcard(string uid,string endt)
{
StringBuilder strSql = new StringBuilder();
strSql.Append("select * from Sp_card");
strSql.Append(" where foruserid=@foruserid ");
SqlParameter[] parameters = {
new SqlParameter("@foruserid", SqlDbType.VarChar,50)
};
parameters[0].Value = uid;
DataTable dt = Sp.SQLServerDAL.DbHelperSQL.Query(strSql.ToString(), parameters).Tables[0];
bool ishas = dt.Rows.Count > 0;
if (ishas)
{
DateTime endtime=DateTime.Now;
if (dt.Rows[0]["cardtype"].ToString() == "1")
{ endtime = endtime.AddMonths(int.Parse(dt.Rows[0]["num"].ToString())); }
else
{ endtime = endtime.AddDays(int.Parse(dt.Rows[0]["num"].ToString())); }
string sql = "update Sp_user set endtime='"+endtime.ToString()+"',haslogin=1 where id="+uid+";";
sql+="DELETE FROM Sp_card where id="+dt.Rows[0]["id"];
Sp.SQLServerDAL.DbHelperSQL.ExecuteSql(sql);
}
}
void ShowSerList()
{
StringBuilder strSql = new StringBuilder();
strSql.Append("select [id],[ips] ");
strSql.Append(" FROM Sp_SerList ");
DataSet ds = Sp.SQLServerDAL.DbHelperSQL.Query(strSql.ToString());
DataTable dt= ds.Tables[0];
string s = "";
for (int i = 0; i < dt.Rows.Count; i++)
{
s+= ds.Tables[0].Rows[i]["ips"].ToString()+",";
}
Response.Write(s);
Response.End();
}
}
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -