if trim(delstr(request.QueryString("typeid")))="" then
sql="select top 10 id,products_image from tablename order by addtime desc"
else
if not isnumeric(trim(request.QueryString("typeid"))) then
response.Write"<script language=javascript>"
response.Write"alert ('对不起,参数不对!');"
response.Write"history.back();"
response.Write"</script>"
response.End
else
typeid=trim(request.QueryString("typeid"))
sql="select id,products_image from tablename where products_type='"&typeid&"' order by id desc"
end if
end if
------------------
if trim(delstr(request.QueryString("typeid")))="" then
中的delstr是段过滤特殊字符的函数function delstr(str)
delstr=replace(str,";","")
delstr=replace(delstr,"'","")
delstr=replace(delstr," ","")
delstr=replace(delstr,"--","")
delstr=replace(delstr,"==","")
delstr=replace(delstr,"&","")
delstr=replace(delstr,chr(34),"")
delstr=replace(delstr,chr(39),"")
delstr=replace(delstr,"%20","")
delstr=replace(delstr,"""","")
delstr=replace(delstr,"?","")
delstr=replace(delstr,":","")
delstr=replace(delstr,"<","")
delstr=replace(delstr,">","")
delstr=replace(delstr,"<","")
delstr=replace(delstr,">","")
end function
刚学asp.net,请问一下上面那段asp代码在c#中如何表达???
sql="select top 10 id,products_image from tablename order by addtime desc"
else
if not isnumeric(trim(request.QueryString("typeid"))) then
response.Write"<script language=javascript>"
response.Write"alert ('对不起,参数不对!');"
response.Write"history.back();"
response.Write"</script>"
response.End
else
typeid=trim(request.QueryString("typeid"))
sql="select id,products_image from tablename where products_type='"&typeid&"' order by id desc"
end if
end if
------------------
if trim(delstr(request.QueryString("typeid")))="" then
中的delstr是段过滤特殊字符的函数function delstr(str)
delstr=replace(str,";","")
delstr=replace(delstr,"'","")
delstr=replace(delstr," ","")
delstr=replace(delstr,"--","")
delstr=replace(delstr,"==","")
delstr=replace(delstr,"&","")
delstr=replace(delstr,chr(34),"")
delstr=replace(delstr,chr(39),"")
delstr=replace(delstr,"%20","")
delstr=replace(delstr,"""","")
delstr=replace(delstr,"?","")
delstr=replace(delstr,":","")
delstr=replace(delstr,"<","")
delstr=replace(delstr,">","")
delstr=replace(delstr,"<","")
delstr=replace(delstr,">","")
end function
刚学asp.net,请问一下上面那段asp代码在c#中如何表达???
给你个网址:
很强的c#.net函数列表http://www.webasp.net/tech/article_show.asp?id=22347
sql="select top 10 id,products_image from tablename order by addtime desc";
}
else {
if (! isnumeric(trim(request.QueryString("typeid")))) {
response.Write("<script language=javascript>");
response.Write("alert ('对不起,参数不对!');");
response.Write("history.back();");
response.Write("</script>");
response.End;
}
else {
typeid=trim(request.QueryString("typeid"));
sql="select id,products_image from tablename where products_type='"+typeid+"' order by id desc";
}
}
{
string str1=str;//为了不影响原来的字符串
str1.Replace(";","");
...
return str1
}
private string query;
public void thisFunction()
{
typeid = IsNumeric(Request["typeid"].Trim())?Request["typeid"].Trim():string.Empty;
query = "select top 10 id,products_image from tablename order by addtime desc";
try
{ if( url == string.Empty )
Response.Write("<script> alert ('对不起,参数不对!');history.back()");
else
query = "select id,products_image from tablename where products_type='"+typeid+"' order by id desc";
}
catch
{
throw;
}
}
//这个函数判断是否是数字
//会用正则表达式自己去弄去,
public bool IsNumeric(string s)
{
bool isNum = true;
foreach(char c in s)
{
if( !char.IsNumber(c) )
{
isNum = false;
break;
}
}
return isNum;
}
//自己搞定
public string delstr(string s)
{
s = s.Relpace("ddd","") //自己添加
return (s);
}
不行啊 ,运行的时候显示response.Write("</script>");这行出错了:(
还有一问,就是
while(dr.Read())
{
message.Text += "<tr>";
message.Text += "<td><a href=type.asp?typeid=" + dr["id"] + " target=showtype>";
message.Text += "<b>" + dr["type_lin"] + "</b></a></td>";
message.Text += "</tr>";
}
这段代码在asp中相当于
do while not rs.eof
...
loop
但一般我都先判断
if rs.eof and rs.bof then
response.write"对不起,没记录"
else
do while not rs.eof
......
loop
end if
这个if rs.eof and rs.bof then在c#中是如何做的呢???麻烦高手指点一下,谢谢!!!
楼上的,能不能再说清楚一点啊,我刚学c#两天,从asp转过来的,不是很明白啊,麻烦说清楚一点拉,谢谢~~~你上面的这一段怎么跟后面的连接数据库显示数据连起来呢?
public void thisFunction()
{
typeid = IsNumeric(Request["typeid"].Trim())?Request["typeid"].Trim():string.Empty;
query = "select top 10 id,products_image from tablename order by addtime desc";
try
{ if( url == string.Empty )
Response.Write("<script> alert ('对不起,参数不对!');history.back()");
else
query = "select id,products_image from tablename where products_type='"+typeid+"' order by id desc";
}
catch
{
throw;
}
}
这是我自己的代码~~不知道怎么改才对~<%@ Import Namespace="System.Data" %>
<%@ Import Namespace="System.Data.SqlClient" %>
<script language="C#" runat="server">
private void Page_Load(object sender,EventArgs e)
{
if (request.QueryString["typeid"]=="") {
sql="select top 10 id,products_image from tablename order by addtime desc";
}
else {
if (! isnumeric(request.QueryString["typeid"])) {
Response.Write("<script> alert ('对不起,参数不对!');history.back()");
response.End;
}
else {
typeid=request.QueryString["typeid"];
sql="select id,products_image from tablename where products_type='"+typeid+"' order by id desc";
}
} SqlConnection conn = new SqlConnection("Server=localhost;Database=db;Uid=sa;Pwd=pass");
SqlCommand cmd = new SqlCommand(sql,conn);
conn.Open();
SqlDataReader dr = cmd.ExecuteReader();
message.Text="";
while(dr.Read())
{
message.Text += "<tr>";
message.Text += "<td height=22 bgcolor=#e0ddd6> <a href=show.asp?id=" + dr["id"] + ">";
message.Text += "<b>" + dr["products_num"] + "</a></td>";
message.Text += "</tr>";
}
conn.Close();
}
</script>