学步园

      额，偶对ASP.NET纯粹是打酱油的。呵呵，不过期末考试彭老师要我们做个期末考试的大作业。我不想忽悠彭老师，到网上直接下载一个给彭老师。于是，自己做了一些模块。记下来一下，呵呵。

      首先第一个模块是一个关于验证码的生成。嘿嘿，这个其实我自己也没有看懂。但还是把代码贴一下，嘿嘿。
private string GenerateCheckCode()<br /> {<br /> int number;<br /> char code;<br /> string checkCode = String.Empty;<br /> System.Random random = new Random();</p> <p> for (int i = 0; i < 4; i++)<br /> {<br /> number = random.Next();</p> <p> if (number % 2 == 0)<br /> code = (char)('0' + (char)(number % 10));<br /> else<br /> code = (char)('A' + (char)(number % 26));</p> <p> checkCode += code.ToString();<br /> }<br /> Session["checkcode"] = checkCode;//保存验证码。<br /> Response.Cookies.Add(new HttpCookie("CheckCode", checkCode));<br /> return checkCode;<br /> }</p> <p> private void CreateCheckCodeImage(string checkCode)<br /> {<br /> if (checkCode == null || checkCode.Trim() == String.Empty)<br /> return;<br /> System.Drawing.Bitmap image = new System.Drawing.Bitmap((int)Math.Ceiling((checkCode.Length * 12.5)), 22);<br /> Graphics g = Graphics.FromImage(image);<br /> try<br /> {<br /> //生成随机生成器<br /> Random random = new Random();<br /> //清空图片背景色<br /> g.Clear(Color.White);<br /> //画图片的背景噪音线<br /> for (int i = 0; i < 2; i++)<br /> {<br /> int x1 = random.Next(image.Width);<br /> int x2 = random.Next(image.Width);<br /> int y1 = random.Next(image.Height);<br /> int y2 = random.Next(image.Height);<br /> g.DrawLine(new Pen(Color.Black), x1, y1, x2, y2);</p> <p> }</p> <p> Font font = new System.Drawing.Font("Arial", 12, (System.Drawing.FontStyle.Bold | System.Drawing.FontStyle.Italic));<br /> System.Drawing.Drawing2D.LinearGradientBrush brush = new System.Drawing.Drawing2D.LinearGradientBrush(new Rectangle(0, 0, image.Width, image.Height), Color.Blue, Color.DarkRed, 1.2f, true);<br /> g.DrawString(checkCode, font, brush, 2, 2);<br /> //画图片的前景噪音点<br /> for (int i = 0; i < 100; i++)<br /> {<br /> int x = random.Next(image.Width);<br /> int y = random.Next(image.Height);<br /> image.SetPixel(x, y, Color.FromArgb(random.Next()));<br /> }<br /> //画图片的边框线<br /> g.DrawRectangle(new Pen(Color.Silver), 0, 0, image.Width - 1, image.Height - 1);<br /> System.IO.MemoryStream ms = new System.IO.MemoryStream();<br /> image.Save(ms, System.Drawing.Imaging.ImageFormat.Gif);<br /> Response.ClearContent();<br /> Response.ContentType = "image/Gif";<br /> Response.BinaryWrite(ms.ToArray());<br /> }<br /> finally<br /> {<br /> g.Dispose();<br /> image.Dispose();<br /> }

      然后是登陆界面，并检查验证码是否正确……嘿嘿，这个模块自己还是写了一点东西……
protected void BTOK_Click(object sender, EventArgs e)<br /> {<br /> if (TBCode.Text != Session["checkcode"].ToString())<br /> {<br /> Response.Write("<mce:script lanuage=javascript><!--<br /> alert('验证码有误，请重新输入验证码！');location='javascript:history.go(-1)'<br /> // --></mce:script>");<br /> return;<br /> }<br /> else<br /> {<br /> if (isAdmin.Checked)<br /> {<br /> //showMessage.Text = "管理员已经选中";<br /> this.land("admin");<br /> }<br /> else<br /> {<br /> this.land("student");<br /> }<br /> }</p> <p> }</p> <p> private void land(string role)<br /> {<br /> //得到数据库链接字符串<br /> DataCon datacon = new DataCon();<br /> SqlConnection connection = datacon.getStrCon();<br /> connection.Open();<br /> SqlCommand com = connection.CreateCommand();<br /> int count = 0;<br /> if("student" == role)<br /> {<br /> com.CommandText = "select count(*) from student where NO='" + TBName.Text + "' and password='" + TBPas.Text + "'";<br /> count = Convert.ToInt32(com.ExecuteScalar());//获取SQL语句的值 强制转换成数值类型<br /> if(1 <= count)<br /> {<br /> Session.Add("studentNO", TBName.Text);<br /> Page.Response.Redirect("student/stuInformation.aspx");<br /> }<br /> else<br /> {<br /> Response.Write("<mce:script lanuage=javascript><!--<br /> alert('您的用户名或密码有误，请您重新输入！');location='javascript:history.go(-1)'<br /> // --></mce:script>");<br /> return;<br /> }<br /> }<br /> else<br /> {<br /> com.CommandText = "select count(*) from admin where adminName ='" + TBName.Text + "' and adminPas='" + TBPas.Text + "'";<br /> count = Convert.ToInt32(com.ExecuteScalar());<br /> if (1 <= count)<br /> {<br /> Session.Add("adminName", TBName.Text);<br /> Page.Response.Redirect("admin/allStudentInfor.aspx");<br /> }<br /> else<br /> {<br /> Response.Write("<mce:script lanuage=javascript><!--<br /> alert('您的用户名或密码有误，请您重新输入！');location='javascript:history.go(-1)'<br /> // --></mce:script>");<br /> return;<br /> }<br /> }<br /> connection.Close();<br /> }
      学生信息的显示界面
protected void Page_Load(object sender, EventArgs e)<br /> {<br /> string str = (string)Session["studentNO"];<br /> DataCon datacon = new DataCon();<br /> SqlConnection connection = datacon.getStrCon();<br /> connection.Open();<br /> String SelsctSql = "select * from student where NO=" + str;<br /> SqlCommand com = new SqlCommand(SelsctSql, connection);<br /> SqlDataReader data = com.ExecuteReader();<br /> while (data.Read())<br /> {<br /> LabelNO.Text = data["NO"].ToString();<br /> LabelAddress.Text = data["address"].ToString();<br /> LabelName.Text = data["name"].ToString();<br /> LabelIDCard.Text = data["IDCard"].ToString();<br /> LabelCollege.Text = data["college"].ToString();<br /> LabelDepartment.Text = data["department"].ToString();<br /> LabelGrade.Text = data["grade"].ToString();<br /> LabelSex.Text = data["sex"].ToString();<br /> LabelNation.Text = data["nation"].ToString();<br /> LabelPolitics.Text = data["politics"].ToString();<br /> LabelBirthday.Text = data["birthday"].ToString();<br /> LabelPhone.Text = data["phone"].ToString();<br /> LabelStartTime.Text = data["startTime"].ToString();<br /> LabelComment.Text = data["comment"].ToString();<br /> }<br /> }

      学生密码的修改。
//创建数据库连接对象，并调用web.config文件的连接驱动<br /> DataCon datacon = new DataCon();<br /> SqlConnection connection = datacon.getStrCon();<br /> //根据用户名和旧密码查询用户<br /> SqlCommand selectcmd = new SqlCommand("select * from student where NO='" + Session["studentNO"].ToString() + "'and password='" + TBSecret.Text.Trim() + "'", connection);<br /> try<br /> {<br /> connection.Open(); ;//打开数据库<br /> SqlDataReader sdr = selectcmd.ExecuteReader();//创建datareader对象，执行查询selectcmd对象<br /> if (sdr.Read())//如果输入的旧密码正确，进行修改密码<br /> {<br /> sdr.Close();//关闭数据库<br /> if (TBAffirmSecret.Text.ToString() != TBNewSecret.Text.ToString())<br /> {<br /> Response.Write("<mce:script language=javascript><!--<br /> alert('新密码输入不一致！密码修改失败')<br /> // --></mce:script>");<br /> }<br /> else<br /> {<br /> //创建updatecmd，读取用户输入的新密码进行替换原有密码，并且限定用户名是session对象传输进来的用户名<br /> SqlCommand updatecmd = new SqlCommand("update student set password='" + TBNewSecret.Text.Trim() + "'where NO='" + Session["studentNO"].ToString() + "'", connection);<br /> int i = updatecmd.ExecuteNonQuery();//执行修改操作<br /> if (i > 0)//如果修改成功<br /> {<br /> Response.Write("<mce:script language=javascript><!--<br /> alert('密码修改成功！')<br /> // --></mce:script>");<br /> }<br /> else//如果修改失败<br /> {<br /> Response.Write("<mce:script language=javascript><!--<br /> alert('密码修改失败！')<br /> // --></mce:script>");<br /> }<br /> }</p> <p> }<br /> else//如果旧密码错误<br /> {<br /> Response.Write("<mce:script language=javascript><!--<br /> alert('您输入的密码错误，检查后重新输入！')<br /> // --></mce:script>");<br /> }<br /> }<br /> catch (System.Exception ee)//进行异常处理<br /> {<br /> Response.Write("<mce:script language=javascript><!--<br /> alert('" + ee.Message.ToString() + "')<br /> // --></mce:script>");<br /> }<br /> finally<br /> {<br /> connection.Close();//关闭数据库<br /> }

      管理员添加学生
protected void BTOK_Click(object sender, EventArgs e)<br /> {<br /> SqlConnection con = new SqlConnection("Server=(local);database=StudentMIS;Uid=sa;Pwd=fendoubuxi");<br /> con.Open();<br /> SqlCommand cmd = new SqlCommand("addStu", con);<br /> cmd.CommandType = CommandType.StoredProcedure;<br /> SqlParameter[] prams =<br /> {<br /> new SqlParameter("@NO", SqlDbType.VarChar, 50),<br /> new SqlParameter("@name", SqlDbType.VarChar, 50),<br /> new SqlParameter("@password", SqlDbType.VarChar, 50),<br /> new SqlParameter("@IDCard", SqlDbType.VarChar, 50),<br /> new SqlParameter("@college", SqlDbType.VarChar, 50),<br /> new SqlParameter("@department", SqlDbType.VarChar, 50),<br /> new SqlParameter("@grade", SqlDbType.VarChar, 50),<br /> new SqlParameter("@sex", SqlDbType.VarChar, 50),<br /> new SqlParameter("@nation", SqlDbType.VarChar, 50),<br /> new SqlParameter("@politics", SqlDbType.VarChar, 50),<br /> new SqlParameter("@birthday", SqlDbType.VarChar, 50),<br /> new SqlParameter("@phone", SqlDbType.VarChar, 50),<br /> new SqlParameter("@startTime", SqlDbType.VarChar, 50),<br /> new SqlParameter("@address", SqlDbType.VarChar, 50),<br /> new SqlParameter("@comment", SqlDbType.VarChar, 50)<br /> };<br /> prams[0].Value = TextBoxNO.Text;<br /> prams[1].Value = TextBoxname.Text;<br /> prams[2].Value = TextBoxpassword.Text;<br /> prams[3].Value = TextBoxIDCard.Text;<br /> prams[4].Value = TextBoxcollege.Text;<br /> prams[5].Value = TextBoxdepartment.Text;<br /> prams[6].Value = TextBoxgrade.Text;<br /> prams[7].Value = TextBoxsex.Text;<br /> prams[8].Value = TextBoxnation.Text;<br /> prams[9].Value = TextBoxpolitics.Text;<br /> prams[10].Value = TextBoxbirthday.Text;<br /> prams[11].Value = TextBoxphone.Text;<br /> prams[12].Value = TextBoxstartTime.Text;<br /> prams[13].Value = TextBoxaddress.Text;<br /> prams[14].Value = TextBoxcomment.Text;</p> <p> // 添加参数<br /> foreach (SqlParameter parameter in prams)<br /> {<br /> cmd.Parameters.Add(parameter);<br /> }<br /> cmd.ExecuteNonQuery();<br /> con.Close();<br /> Response.Write("<mce:script type="text/javascript"><!--<br /> alert('信息添加成功！')<br /> // --></mce:script>");<br /> }