这样的用户登录验证数据访问好不好?大家有什么更好的办法么 ?
//----用户登录验证的数据访问
public bool getLogin(string yhm,string mm)
{
bool m = false;
SqlConnection myConnection = new SqlConnection(connectionString);
SqlCommand myCommand = new SqlCommand();
myCommand.Connection = myConnection;
myCommand.CommandType = CommandType.StoredProcedure;
myCommand.CommandText = "sp_userValidation";
myCommand.Parameters.Add("@UserAccount", SqlDbType.VarChar, 16).Value = yhm;
myCommand.Parameters.Add("@PassWord", SqlDbType.VarChar, 16).Value = mm;
myConnection.Open();
SqlDataReader dr = myCommand.ExecuteReader();
try
{
if (dr.Read())
{
m = true;
}
else
{
m = false;
}
}
finally
{
dr.Close();
myConnection.Close();
}
return m;
}
存储过程,为
ALTER PROCEDURE dbo.sp_userValidation
/*
(
@parameter1 int = 5,
@parameter2 datatype OUTPUT
)
*/
@UserAccount varchar(16),
@PassWord varchar(16)
AS
select f_userAccount from tb_userAccount where f_userAccount=@UserAccount and f_passWord=@PassWord
/* SET NOCOUNT ON */
RETURN
SqlDataReader 这个实例后的对象没怎用过,不知道有不好用的么?