book_add.aspx.cs

ajax+access

///**************************
/// 创 建 者:Bonnibell
/// 创建日期:2008-11-20
/// 所属模块:留言板
/// 功　　能: 
/// 接受参数: 
/// 含数据表: 
///**********５１aｓpｘ***
using System;
using System.Data;
using System.Data.OleDb;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;

public partial class Book_Add : System.Web.UI.Page
{
    string strConn = System.Web.Configuration.WebConfigurationManager.ConnectionStrings["connStr"].ConnectionString;
    protected void Page_Load(object sender, EventArgs e)
    {
        string str_Verify = string.Empty;

        string str_Name = string.Empty;
        string str_From = string.Empty;
        string str_Email = string.Empty;
        string str_Tel = string.Empty;
        string str_Book = string.Empty;
        string str_Title = string.Empty;
        string str_Message = string.Empty;
        try
        {
            str_Verify = Request.Params["Verify"];
            str_Name = Request.Params["Name"];
            str_From = Request.Params["From"];
            str_Email = Request.Params["Email"];
            str_Tel = Request.Params["Tel"];
            str_Title = Request.Params["Title"];
            str_Book = Request.Params["Book"];
        }
        catch
        {
            str_Message = "错误:参数错误!";
            Response.Write(str_Message);
            return;
        }
        if (Session["VerifyCode"] != null)
        {
            if (str_Verify.ToUpper() != Session["VerifyCode"].ToString().ToUpper())
            {
                str_Message = "错误:验证码错误!";
                Response.Write(str_Message);
                return;
            }
        }
        else
        {
            str_Message = "错误:验证码错误!";
            Response.Write(str_Message);
            return;
        }

        try
        {
            string strSql = "INSERT INTO T_Book (F_Name, F_Title,F_From, F_Email, F_Tel, F_Book) VALUES(@F_Name,@F_Title,@F_From,@F_Email,@F_Tel,@F_Book)";

            OleDbParameter[] oledbParams = new OleDbParameter[6];

            OleDbParameter paramName = new OleDbParameter("@F_Name", OleDbType.VarChar, 20);
            paramName.Value = str_Name;

            OleDbParameter paramTitle = new OleDbParameter("@F_Title", OleDbType.VarChar, 20);
            paramTitle.Value = str_Title;

            OleDbParameter paramFrom = new OleDbParameter("@F_From", OleDbType.VarChar, 20);
            paramFrom.Value = str_From;

            OleDbParameter paramEmail = new OleDbParameter("@F_Email", OleDbType.VarChar, 20);
            paramEmail.Value = str_Email;

            OleDbParameter paramQQ = new OleDbParameter("@F_Tel", OleDbType.VarChar, 20);
            paramQQ.Value = str_Tel;

            OleDbParameter paramBook = new OleDbParameter("@F_Book", OleDbType.VarChar, 250);
            paramBook.Value = str_Book;


            oledbParams[0] = paramName;
            oledbParams[1] = paramTitle;
            oledbParams[2] = paramFrom;
            oledbParams[3] = paramEmail;
            oledbParams[4] = paramQQ;
            oledbParams[5] = paramBook;

            SqlHelper.ExecuteNonQuery(strConn, strSql, oledbParams);
            Response.Write("添加留言成功！");
            return;
        }
        catch
        {
            str_Message = "错误:数据库错误!";
            Response.Write(str_Message);
            return;
        }
    }
}