using System;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using System.Data.SqlClient;
namespace myDatabase
{
class Program
{
static void Main(string[] args)
{
/*
using (SqlConnection conn = new SqlConnection("Data Source=.;Initial Catalog=CPXS;User ID=sa;Password=123"))
{
conn.Open();
using (SqlCommand cmd = conn.CreateCommand())
{
cmd.CommandText = "insert into T_User(Fusername,Fpassword) values('姚明','000000')";
cmd.ExecuteNonQuery();
Console.WriteLine("插入数据成功");
}
}
//Console.WriteLine("打开数据库成功");
Console.ReadKey();
*/
/*
Console.Write("请输入用户名:");
string username = Console.ReadLine();
Console.Write("请输入密码:");
string password = Console.ReadLine();
using (SqlConnection conn = new SqlConnection("Data Source=.;Initial Catalog=CPXS;User ID=sa;Password=123"))
{
conn.Open();
using (SqlCommand cmd = conn.CreateCommand())
{
cmd.CommandText = "insert into T_User1(Fusername,Fpassword) values('"+username+"','"+password+"')";
cmd.ExecuteNonQuery();
Console.WriteLine("插入数据成功");
}
}
//Console.WriteLine("打开数据库成功");
Console.ReadKey();
*/
/*
using (SqlConnection conn = new SqlConnection("Data Source=.;Initial Catalog=CPXS;User ID=sa;Password=123"))
{
conn.Open();
using (SqlCommand cmd = conn.CreateCommand())
{
cmd.CommandText = "select count(*) from T_User1";
Console.WriteLine(cmd.ExecuteScalar());//返回第一行,第一列的结果
}
}
//Console.WriteLine("打开数据库成功");
Console.ReadKey();
*/
/*
using (SqlConnection conn = new SqlConnection("Data Source=.;Initial Catalog=CPXS;User ID=sa;Password=123"))
{
conn.Open();
using (SqlCommand cmd = conn.CreateCommand())
{
cmd.CommandText = "insert into T_User1(Fusername,Fpassword) output inserted.ID values('姚晨','000000')";
int ID = Convert.ToInt32(cmd.ExecuteScalar());
Console.WriteLine("新插入的主键:{0}",ID);
}
}
//Console.WriteLine("打开数据库成功");
Console.ReadKey();
*/
/*
using (SqlConnection conn = new SqlConnection("Data Source=.;Initial Catalog=CPXS;User ID=sa;Password=123"))
{
conn.Open();
using (SqlCommand cmd = conn.CreateCommand())
{
cmd.CommandText = "select * from T_User1";
using (SqlDataReader reader = cmd.ExecuteReader())
{
while (reader.Read())
{
//Console.WriteLine(reader.GetString(1));
int id = reader.GetInt32(reader.GetOrdinal("ID"));
string username = reader.GetString(reader.GetOrdinal("Fusername"));
string password = reader.GetString(reader.GetOrdinal("Fpassword"));
Console.WriteLine("{0}{1}{2}",id,username,password);
}
}
//Console.WriteLine(cmd.ExecuteScalar());
}
}
//Console.WriteLine("打开数据库成功");
Console.ReadKey();
*/
/*
A:
Console.Write("请输入用户名:");
string username = Console.ReadLine();
Console.Clear();
using (SqlConnection conn = new SqlConnection("Data Source=.;Initial Catalog=CPXS;User ID=sa;Password=123"))
{
conn.Open();
using (SqlCommand cmd = conn.CreateCommand())
{
cmd.CommandText = "select * from T_User1 where Fusername='"+username+"'";
using (SqlDataReader reader = cmd.ExecuteReader())
{
if (reader.Read())
{
B:
Console.Write("请输入密码:");
string password = Console.ReadLine();
Console.Clear();
//用户名存在
string fpassword = reader.GetString(reader.GetOrdinal("Fpassword"));
if (password == fpassword)
{
Console.WriteLine("登陆成功!");
}
else
{
Console.WriteLine("密码错误!"); goto B;
}
}
else
{
Console.WriteLine("该用户名不存在!"); goto A;
}
}
}
}
*/
/*
Console.Write("请输入用户名:");
string username = Console.ReadLine();
Console.Write("请输入密码:");
string password = Console.ReadLine();//输入1' or '1'='1造成SQL注入漏洞攻击
using (SqlConnection conn = new SqlConnection("Data Source=.;Initial Catalog=CPXS;User ID=sa;Password=123"))
{
conn.Open();
using (SqlCommand cmd = conn.CreateCommand())
{
cmd.CommandText = "select count(*) from T_User1 where Fusername='"+username+"'and Fpassword='"+password+"'";
int i = Convert.ToInt32(cmd.ExecuteScalar());
if (i > 0)
{
Console.WriteLine("登录成功!");
}
else
{
Console.WriteLine("用户名或密码错误!");
}
}
}
Console.ReadKey();
*/
/*
Console.Write("请输入用户名:");
string username = Console.ReadLine();
Console.Write("请输入密码:");
string password = Console.ReadLine();
using (SqlConnection conn = new SqlConnection("Data Source=.;Initial Catalog=CPXS;User ID=sa;Password=123"))
{
conn.Open();
using (SqlCommand cmd = conn.CreateCommand())
{
cmd.CommandText = "select count(*) from T_User1 where Fusername=@username and Fpassword=@password";
cmd.Parameters.Add(new SqlParameter("username", username));//避免输入1' or '1'='1造成SQL注入漏洞攻击
cmd.Parameters.Add(new SqlParameter("password", password));
int i = Convert.ToInt32(cmd.ExecuteScalar());
if (i > 0)
{
Console.WriteLine("登录成功!");
}
else
{
Console.WriteLine("用户名或密码错误!");
}
}
}
Console.ReadKey();
*/
}
}
}