一、创建存储过程
CREATE PROC usercheck
@fillname varchar(50),
@inpassword varchar(50),
@outcheck char(3) OUTPUT
AS
BEGIN
IF EXISTS(SELECT * FROM uUser where UserName=@fillname and UserPwd=@inpassword )
SET @outcheck="yes"
ELSE
SET @outcheck="no"
END
二、存储过程的调用
String _UserName=TextBox2.Text;
String _UserPwd = TextBox1.Text;
string ConnectionString = "Data Source=WML//SQLEXPRESS; Initial Catalog=shiyan; User ID=sa;Password=****; Connection Timeout=9000";
SqlConnection conn = new SqlConnection(ConnectionString);
conn.Open();
SqlCommand cmd = new SqlCommand("usercheck", conn); // 参数1 为存储过程名称
cmd.CommandType = CommandType.StoredProcedure; // 指明command 为存储过程
SqlParameter sptjread = new SqlParameter("@infullname", _UserName);//添加存储过程参数
cmd.Parameters.Add(sptjread);
SqlParameter sp = new SqlParameter("@inpassword", _UserPwd);//添加存储过程参数
cmd.Parameters.Add(sp);
//存储过程参数@outcheck的返回值只能是一个字符的例如y
// SqlParameter spt = new SqlParameter("@outcheck", "");
// cmd.Parameters.Add(spt);
cmd.Parameters.Add("@outcheck", SqlDbType.Char, 3);
cmd.Parameters["@outcheck"].Direction = ParameterDirection.Output;
// 执行存储过程
cmd.ExecuteNonQuery();
//Response.Write("outcheck=" + cmd.Parameters["@outcheck"].Value);
if (cmd.Parameters["@outcheck"].Value.Equals("yes"))
Response.Write("恭喜你,登录成功!");
else
Response.Write("登陆失败!");
//Response.Write("infullname=" + cmd.Parameters["@infullname"].Value);
conn.Close();