2楼原来的代码很简单如下:
//用户登录页面的程序实现
//文件login.aspx.cs
using System;
using System.Data;
using System.Data.SqlClient;
using System.Configuration;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
public partial class _Default : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
Label3.Text = ""; //页面载入的时候,label3中的数据置空
}
protected void Button1_Click(object sender, EventArgs e)
{
//下面的代码从数据库中读取数据,判断这个用户是否为合法的用户。
//string cnstr = "Persist Security Info=True;User ID=sa;Initial Catalog=bbs;Data Source=LIHUAN";
string cnstr = System.Configuration.ConfigurationSettings.AppSettings["data"].ToString();
string sqlstring = "SELECT UserName,[password] FROM [user] WHERE UserName=@UserName_temp and password=@password_temp";
SqlConnection cn = new SqlConnection(cnstr); //建立连接
SqlCommand cmd = new SqlCommand(sqlstring, cn); //建立命令对象
SqlParameter UserNamePara = new SqlParameter("@UserName_temp", SqlDbType.VarChar, 8); //定义参数、数据类型及其长度
SqlParameter PasswordPara = new SqlParameter("@password_temp", SqlDbType.VarChar, 15);//定义参数、数据类型及其长度