using System;
using System.Data;
using System.Data.SqlClient;
using System.Data.Sql;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.ComponentModel;
public partial class manager_class : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
if (!IsPostBack)
{
binddatalist1();
}
}
public void binddatalist1()
{
SqlConnection myConnection = new SqlConnection(DataBaseDB.ConnectionString);
String cmdtext = "select * from bclass order by bclassid desc";
SqlDataAdapter da = new SqlDataAdapter(cmdtext, myConnection);
DataSet data = new DataSet();
da.Fill(data);
DataList1.DataSource = data;
DataList1.DataBind();
}
}
using System;
using System.Data;
using System.Data.SqlClient;
using System.Data.Sql;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.ComponentModel;
public partial class manager_AddMclass : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
if(!IsPostBack)
{
binddatalist1();
}
}
public void binddatalist1()
{
SqlConnection myConnection = new SqlConnection(DataBaseDB.ConnectionString);
String cmdtext = "select * from bclass order by bclassid desc";
SqlDataAdapter da = new SqlDataAdapter(cmdtext, myConnection);
DataSet data = new DataSet();
da.Fill(data);
DropDownList1.DataSource = data;
DropDownList1.DataTextField = "bclassname";
DropDownList1.DataValueField="bclassid";
DropDownList1.DataBind();
}
protected void Button1_Click(object sender, EventArgs e)
{
SqlConnection myConnection = new SqlConnection(DataBaseDB.ConnectionString);
String cmdText = "insert into mclass (bclassid,mclassname)values('"+DropDownList1.SelectedValue.ToString()+"','" + CleanString.InputText(TextBox1.Text.ToString(), TextBox1.Text.Length) + "')";
SqlCommand myCommand = new SqlCommand(cmdText, myConnection);
myConnection.Open();
myCommand.ExecuteNonQuery();
myConnection.Close();
//UrlEncode用来解码
binddatalist1();
}
}
using System;
using System.Data;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.IO;
public partial class manager_FileUpload : System.Web.UI.UserControl
{
protected void Page_Load(object sender, EventArgs e)
{
}
protected void Button1_Click(object sender, EventArgs e)
{
Boolean fileOK = false;
String path = Server.MapPath("~/UploadImages/");
if (FileUpload1.HasFile)
{
String fileExtension =
System.IO.Path.GetExtension(FileUpload1.FileName).ToLower();
String[] allowedExtensions =
{ ".gif", ".png", ".jpeg", ".jpg" };
for (int i = 0; i < allowedExtensions.Length; i++)
{
if (fileExtension == allowedExtensions[i])
{
fileOK = true;
}
}
}
if (fileOK)
{
try
{
string thetime = DateTime.Now.ToString();
Label2.Text = thetime.ToString();
Label2.Text = CleanString.cleantime(thetime.ToString());
FileUpload1.PostedFile.SaveAs(path + FileUpload1.FileName);
Label1.Text = "上传成功!";
}
catch (Exception ex)
{
Label1.Text = "上传失败!";
}
}
else
{
Label1.Text = "上传文件名不能为空!";
}
}
}
using System;
using System.Data;
using System.Configuration;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.Text;
//数据库连接字符串
public class DataBaseDB
{
public static String ConnectionString = ConfigurationManager.AppSettings["conn"];
}
//替换字符串
public sealed class CleanString
{
///定义InputText函数处理用于输入
public static string InputText(string inputString, int maxLength)
{
StringBuilder retVal = new StringBuilder(); ///构造临时字符串数组
if ((inputString != null) && (inputString != String.Empty))
{
inputString = inputString.Trim(); ///清空字符串两段的空白符号
if (inputString.Length > maxLength)
{ ///设置字符串的长度
inputString = inputString.Substring(0, maxLength);
}
for (int i = 0; i < inputString.Length; i++)
{
switch (inputString[i]) ///替换危险字符串
{
case '"': retVal.Append("""); break;
case '<': retVal.Append("<"); break;
case '>': retVal.Append(">"); break;
default: retVal.Append(inputString[i]); break;
}
}
retVal.Replace("'", "''");
}
return retVal.ToString();
}
///定义Imputs函数处理用于输入用与短输入
public static string cleantext(string str)
{
//
return str;
}
//图片替换
public static string cleantime(string str)
{
str = str.Replace("-", "0");
str = str.Replace(":", "0");
str = str.Replace(" ", "0");
str = str.Replace(" ", "0");
str = str.Replace('/n'.ToString(), "<br>");
return str;
}
}
<?xml version="1.0"?>
<!--
注意: 除了手动编辑此文件以外,您还可以使用
Web 管理工具来配置应用程序的设置。可以使用 Visual Studio 中的
“网站”->“Asp.Net 配置”选项。
设置和注释的完整列表在
machine.config.comments 中,该文件通常位于
/Windows/Microsoft.Net/Framework/v2.x/Config 中
-->
<configuration>
<appSettings>
<add key="conn" value="Data Source=KKKK;Initial Catalog=shopMDF;User ID=sa;pooling=true"></add>
</appSettings>
<connectionStrings>
<add name="shopbaseConnectionString" connectionString="Data Source=KKKK;Initial Catalog=shopMDF;User ID=sa" providerName="System.Data.SqlClient"/>
</connectionStrings>
<system.web>
<!--
设置 compilation debug="true" 将调试符号插入
已编译的页面中。但由于这会
影响性能,因此只在开发过程中将此值
设置为 true。
-->
<compilation debug="true"/>
<!--
通过 <authentication> 节可以配置 ASP.NET 使用的
安全身份验证模式,
以标识传入的用户。
-->
<authentication mode="Windows"/>
<!--
如果在执行请求的过程中出现未处理的错误,
则通过 <customErrors> 节可以配置相应的处理步骤。具体说来,
开发人员通过该节可以配置
要显示的 html 错误页
以代替错误堆栈跟踪。
<customErrors mode="RemoteOnly" defaultRedirect="GenericErrorPage.htm">
<error statusCode="403" redirect="NoAccess.htm" />
<error statusCode="404" redirect="FileNotFound.htm" />
</customErrors>
-->
</system.web>
</configuration>