testsql.c
#include <windows.h>
#include <sqlext.h>
#include <sqltypes.h>
#include <odbcss.h>
/*
int yanzheng(char * tmp_usrname,char * tmp_password);
int main()
{
int flag=1;
char * data;
char username[10];
char password[10];
data=getenv("QUERY_STRING");
sscanf(data,"m=%[^&]&n=%s",username,password);
flag=yanzheng(username,password);
if(flag==1)
{
printf("Set-Cookie:i=1;");
printf("Contenttype:text/html\n\n");
printf("<html><head><title>第二个CGI程序</title></head><body>");
printf("登陆成功\n");
printf("<a href=/cgi-bin/index.exe>欢迎访问主页</a><br>");
}
if(flag==0)
{
printf("Contenttype:text/html\n\n");
printf("<html><head><title>第二个CGI程序</title></head><body>");
printf("登陆不成功,密码错误\n");
printf("<a href=../secondcgi.html>返回</a><br>");
}
if(flag==2)
{
printf("Contenttype:text/html\n\n");
printf("<html><head><title>第二个CGI程序</title></head><body>");
printf("网络或数据库错误,请重试\n");
printf("<a href=../secondcgi.html>返回</a><br>");
}
if(flag==3)
{
printf("Contenttype:text/html\n\n");
printf("<html><head><title>第二个CGI程序</title></head><body>");
printf("用户名不存在,请注册\n");
printf("<a href=../secondcgi.html>返回</a><br>");
}
printf("</body></html>");
return 0;
}
int yanzheng(char * tmp_usrname,char * tmp_password)
{
SQLHENV henv;
SQLHDBC hdbc;
SQLHSTMT hstmt;
SQLRETURN retcode;
char sql1[79]="select pwd from usr where username='";
char sql2[5]="'";
int i;
strcat(sql1,tmp_usrname);
strcat(sql1,sql2);//可修改,sql语句
retcode=SQLAllocHandle(SQL_HANDLE_ENV,SQL_NULL_HANDLE,&henv);
if(retcode==SQL_SUCCESS || retcode==SQL_SUCCESS_WITH_INFO)
{
retcode=SQLSetEnvAttr(henv,SQL_ATTR_ODBC_VERSION,(void*)SQL_OV_ODBC3,0);
if(retcode==SQL_SUCCESS || retcode==SQL_SUCCESS_WITH_INFO)
{
retcode=SQLAllocHandle(SQL_HANDLE_DBC,henv,&hdbc);
if(retcode==SQL_SUCCESS || retcode==SQL_SUCCESS_WITH_INFO)
{
retcode=SQLConnect(hdbc,(SQLCHAR*)"Csql",SQL_NTS,(SQLCHAR*)"sa",SQL_NTS,(SQLCHAR*)"sa",SQL_NTS); //可修改,数据源,用户名,密码
if(retcode==SQL_SUCCESS || retcode==SQL_SUCCESS_WITH_INFO)
{
retcode=SQLAllocHandle(SQL_HANDLE_STMT,hdbc,&hstmt);
if(retcode==SQL_SUCCESS || retcode==SQL_SUCCESS)
{
char list[10]; //数组长度 与 字段长度一致
SQLINTEGER p=SQL_NTS;
SQLPrepare(hstmt,sql1,79);//第三个参数与数组大小相同,而不是数据库列相同
SQLExecDirect(hstmt,sql1,79);
SQLBindCol(hstmt,1,SQL_C_CHAR,list,10,&p); //可修改,第二个参数表示查询哪一列
retcode=SQLFetch(hstmt);
if(retcode == SQL_ERROR )
{
i=2;
}
if(retcode == SQL_SUCCESS || retcode == SQL_SUCCESS_WITH_INFO)
{
int p;
for(p=0;p<strlen(list);p++)
{
if(list[p]==' ')
{
list[p]='\0';
break;
}
}
if(0==strcmp(list,tmp_password))
{
i = 1;
}
else
{
i = 0;
}
}
if(retcode == SQL_NO_DATA)
{
i = 3;
}
}
SQLDisconnect(hdbc);
}
SQLFreeHandle(SQL_HANDLE_DBC,hdbc);
}
}
}
return i;
}
*/
int main()
{
int i;
int m;
SQLHENV henv;
SQLHDBC hdbc;
SQLHSTMT hstmt;
SQLRETURN retcode;
UCHAR sql1[79]="insert usr values ('user5','12345')";
// UCHAR sql3[10]="admin";
// UCHAR sql2[5]="'";
// strcat(sql1,sql3);
// strcat(sql1,sql2);//可修改,sql语句
retcode=SQLAllocHandle(SQL_HANDLE_ENV,SQL_NULL_HANDLE,&henv);
if(retcode==SQL_SUCCESS || retcode==SQL_SUCCESS_WITH_INFO)
{
retcode=SQLSetEnvAttr(henv,SQL_ATTR_ODBC_VERSION,(void*)SQL_OV_ODBC3,0);
if(retcode==SQL_SUCCESS || retcode==SQL_SUCCESS_WITH_INFO)
{
retcode=SQLAllocHandle(SQL_HANDLE_DBC,henv,&hdbc);
if(retcode==SQL_SUCCESS || retcode==SQL_SUCCESS_WITH_INFO)
{
retcode=SQLConnect(hdbc,(SQLCHAR*)"Csql",SQL_NTS,(SQLCHAR*)"sa",SQL_NTS,(SQLCHAR*)"sa",SQL_NTS); //可修改,数据源,用户名,密码
if(retcode==SQL_SUCCESS || retcode==SQL_SUCCESS_WITH_INFO)
{
retcode=SQLAllocHandle(SQL_HANDLE_STMT,hdbc,&hstmt);
if(retcode==SQL_SUCCESS || retcode==SQL_SUCCESS)
{
//绑定参数方式
// char a[20]="Jim";
char list[10];
char list2[10];//数组长度 与 字段长度一致
SQLINTEGER p=SQL_NTS;
//1.预编译
SQLPrepare(hstmt,sql1,79);//第三个参数与数组大小相同,而不是数据库列相同
//2.绑定参数值
// SQLBindParameter(hstmt,1,SQL_PARAM_INPUT,SQL_C_CHAR,SQL_CHAR,200,0,a,20,&p);
// SQLExecute(hstmt);
SQLExecDirect(hstmt,sql1,79);
printf("connection is OK\n");
/*
SQLBindCol(hstmt,1,SQL_C_CHAR,list,10,&p); //可修改,第二个参数表示查询哪一列
SQLBindCol(hstmt,2,SQL_C_CHAR,list2,10,&p);
retcode=SQLFetch(hstmt);
retcode=SQLFetch(hstmt);
if(retcode == SQL_ERROR )
{
i=2;
}
if(retcode == SQL_SUCCESS || retcode == SQL_SUCCESS_WITH_INFO)
{
printf("%s",list);
printf("%s",list2);
if(0==strcmp(list,"admin "))
{
i = 1;
}
else
{
i = 0;
}
}
if(retcode == SQL_NO_DATA)
{
i = 3;
}
*/
}
SQLDisconnect(hdbc);
}
SQLFreeHandle(SQL_HANDLE_DBC,hdbc);
}
}
}
return 0;
}