editginfo.aspx.cs

数据库安装将实例目录文件夹下扩展名为的两个文件拷贝到安装路径下的录下

using System;
using System.Data;
using System.Data.SqlClient;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;

public partial class MemberManage_EditGInfo : System.Web.UI.Page
{
    SqlOperate sqloperate = new SqlOperate();
    SqlConnection sqlconn = new SqlConnection(ConfigurationManager.AppSettings["ConnectionString"]);
    string strGTypeID;
    protected void Page_Load(object sender, EventArgs e)
    {
        if (!IsPostBack)
        {
            sqlconn.Open();
            string strid = Page.Request.QueryString["GoodsID"];
            string sqlstr = "select * from vb_GoodsInfo where GoodsID='" + strid + "'";
            SqlDataAdapter myda = new SqlDataAdapter(sqlstr, sqlconn);
            DataSet myds = new DataSet();
            myda.Fill(myds, "vb_GoodsInfo");
            DataRowView mydrv = myds.Tables["vb_GoodsInfo"].DefaultView[0];
            txtGID.Text = Convert.ToString(mydrv.Row["GoodsID"]);
            txtGName.Text = Convert.ToString(mydrv.Row["GoodsName"]);
            txtGType.Text = Convert.ToString(mydrv.Row["GoodsTypeName"]);
            txtGStore.Text = Convert.ToString(mydrv.Row["StoreName"]);
            txtGPrice.Text = Convert.ToString(mydrv.Row["GoodsPrice"]);
            txtGDate.Text = Convert.ToString(mydrv.Row["GoodsDate"]);
            txtGIntro.Text = Convert.ToString(mydrv.Row["GoodsIntroduce"])+"…";
            iGPhoto.ImageUrl = Convert.ToString(mydrv.Row["GoodsPhoto"]);
            strGTypeID = Convert.ToString(mydrv.Row["GoodsTypeID"]);
        }
    }
    protected void btnShop_Click(object sender, EventArgs e)
    {
        if (Session["MName"] == null)
        {
            Response.Write("<script>alert('您还没有登录，请登录后再购买，谢谢合作！');location='javascript:history.go(-1)';</script>");
        }
        else
        {
            sqlconn.Open();
            string strid = Page.Request.QueryString["GoodsID"];
            string sqlstrbind = "select * from vb_GoodsInfo where GoodsID='" + strid + "'";
            SqlDataAdapter myda = new SqlDataAdapter(sqlstrbind, sqlconn);
            DataSet myds = new DataSet();
            myda.Fill(myds, "vb_GoodsInfo");
            DataRowView mydrv = myds.Tables["vb_GoodsInfo"].DefaultView[0];
            strGTypeID = Convert.ToString(mydrv.Row["GoodsTypeID"]);
            string sqlstr = "insert into tb_OrderInfo"
                + "(OrderMember,GoodsID,GoodsName,GoodsTypeID,GoodsTypeName,GoodsPrice,IsCheckout)"
                + " values('" + Session["MName"].ToString() + "','" + txtGID.Text.Trim() + "','"
                + txtGName.Text.Trim() + "','" + strGTypeID + "','" + txtGType.Text.Trim()
                + "','" + txtGPrice.Text.Trim() + "','否')";
            sqloperate.DataCom(sqlstr);
            Response.Redirect("Shopping.aspx");
        }
    }
}