using System;
using System.Data;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.Data.SqlClient;
public partial class _Default : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{ }
protected void Button1_Click(object sender, EventArgs e)
{
string id = TextBox1.Text.ToString().Trim();
string pass = TextBox2.Text.ToString().Trim();
string limit = RadioButtonList1.SelectedValue.Trim();
string selectstr = "";
switch (limit)
{
case "0":
selectstr = "Select * from user where= limit='管理员'";
break;
case "1":
selectstr = "Select * from user where= limit='项目经理'";
break;
case "2":
selectstr = "Select * from user where= limit='员工'";
break; }
SqlConnection conn = new SqlConnection(ConfigurationManager.ConnectionStrings["RCDBConnectionString"].ConnectionString);
SqlCommand cmd = new SqlCommand(selectstr, conn);
try
{
conn.Open ();
SqlDataReader sdr=cmd.ExecuteReader(); ??????????尚未初始化
if(sdr.Read ())
{
if(sdr.GetString(1) == pass )
{Session ["id"]=id ;
Session ["pass"]=pass ;
conn.Close ();
switch (limit)
{
case "0":
Response.Redirect("A-main.aspx");
break;
case "1":
Response.Redirect("personnelmain.aspx");
break;
case "2":
Response.Redirect("personnelmain.aspx");
break;
}
}
}
else
{
Label3.Text ="用户名或密码错误!";
}
}
finally
{
conn.Close ();
}
}
}求高人指点~
using System.Data;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.Data.SqlClient;
public partial class _Default : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{ }
protected void Button1_Click(object sender, EventArgs e)
{
string id = TextBox1.Text.ToString().Trim();
string pass = TextBox2.Text.ToString().Trim();
string limit = RadioButtonList1.SelectedValue.Trim();
string selectstr = "";
switch (limit)
{
case "0":
selectstr = "Select * from user where= limit='管理员'";
break;
case "1":
selectstr = "Select * from user where= limit='项目经理'";
break;
case "2":
selectstr = "Select * from user where= limit='员工'";
break; }
SqlConnection conn = new SqlConnection(ConfigurationManager.ConnectionStrings["RCDBConnectionString"].ConnectionString);
SqlCommand cmd = new SqlCommand(selectstr, conn);
try
{
conn.Open ();
SqlDataReader sdr=cmd.ExecuteReader(); ??????????尚未初始化
if(sdr.Read ())
{
if(sdr.GetString(1) == pass )
{Session ["id"]=id ;
Session ["pass"]=pass ;
conn.Close ();
switch (limit)
{
case "0":
Response.Redirect("A-main.aspx");
break;
case "1":
Response.Redirect("personnelmain.aspx");
break;
case "2":
Response.Redirect("personnelmain.aspx");
break;
}
}
}
else
{
Label3.Text ="用户名或密码错误!";
}
}
finally
{
conn.Close ();
}
}
}求高人指点~
selectstr = "Select * from user where= limit='管理员'";
导致selectstr="";而且where后面多了个=
selectstr = "Select * from user where= limit='管理员'";
应该是
selectstr = "Select * from user where limit='管理员'";using System;
using System.Data;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.Data.SqlClient;
public partial class _Default : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{ }
protected void Button1_Click(object sender, EventArgs e)
{
string id = TextBox1.Text.ToString().Trim();
string pass = TextBox2.Text.ToString().Trim();
string limit = RadioButtonList1.SelectedValue.Trim();
string selectstr = "";
switch (limit)
{
case "0":
selectstr = "Select * from user where= limit='管理员'";
break;
case "1":
selectstr = "Select * from user where= limit='项目经理'";
break;
case "2":
selectstr = "Select * from user where= limit='员工'";
break; }
SqlConnection conn = new SqlConnection(ConfigurationManager.ConnectionStrings["RCDBConnectionString"].ConnectionString);
SqlCommand cmd = new SqlCommand(selectstr, conn);
try
{
conn.Open ();
SqlDataReader sdr=cmd.ExecuteReader(); ??????????尚未初始化
if(sdr.Read ())
{
if(sdr.GetString(1) == pass )
{Session ["id"]=id ;
Session ["pass"]=pass ;
conn.Close ();
switch (limit)
{
case "0":
Response.Redirect("A-main.aspx");
break;
case "1":
Response.Redirect("personnelmain.aspx");
break;
case "2":
Response.Redirect("personnelmain.aspx");
break;
}
}
}
else
{
Label3.Text ="用户名或密码错误!";
}
}
finally
{
conn.Close ();
}
}
}
导致selectstr="";而且where后面多了个=
selectstr = "Select * from user where= limit='管理员'";
应该是
selectstr = "Select * from user where limit='管理员'";using System;
using System.Data;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.Data.SqlClient;
public partial class _Default : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{ }
protected void Button1_Click(object sender, EventArgs e)
{
string id = TextBox1.Text.ToString().Trim();
string pass = TextBox2.Text.ToString().Trim();
string limit = RadioButtonList1.SelectedValue.Trim();//limit的值不是0,1,2导致selectstr = ""; string selectstr = "";
switch (limit)
{
case "0":
selectstr = "Select * from user where limit='管理员'";//多个=,去掉=
break;
case "1":
selectstr = "Select * from user where= limit='项目经理'";//多个=,去掉=
break;
case "2":
selectstr = "Select * from user where= limit='员工'";//多个=,去掉=
break; }
SqlConnection conn = new SqlConnection(ConfigurationManager.ConnectionStrings["RCDBConnectionString"].ConnectionString);
SqlCommand cmd = new SqlCommand(selectstr, conn);
try
{
conn.Open ();
SqlDataReader sdr=cmd.ExecuteReader(); ??????????尚未初始化
if(sdr.Read ())
{
if(sdr.GetString(1) == pass )
{Session ["id"]=id ;
Session ["pass"]=pass ;
conn.Close ();
switch (limit)
{
case "0":
Response.Redirect("A-main.aspx");
break;
case "1":
Response.Redirect("personnelmain.aspx");
break;
case "2":
Response.Redirect("personnelmain.aspx");
break;
}
}
}
else
{
Label3.Text ="用户名或密码错误!";
}
}
finally
{
conn.Close ();
}
}
}