private static SqlConnection connection;
public static SqlConnection Connection
{
get
{
string connectionString = "server=MMIT017\\SQL2008;database=TestDB;uid=sa;pwd=123456";
if (connection == null)
{
connection = new SqlConnection(connectionString);
connection.Open();
}
else if (connection.State == System.Data.ConnectionState.Closed)
{
connection.Open();
}
else if (connection.State == System.Data.ConnectionState.Broken)
{
connection.Close();
connection.Open();
}
return connection;
}
}
public static int ExecuteCommand(string safeSql)
{
SqlCommand cmd = new SqlCommand(safeSql, Connection);
int result = cmd.ExecuteNonQuery();
return result;
}
public static int ExecuteCommand(string sql, params SqlParameter[] values)
{
SqlCommand cmd = new SqlCommand(sql, Connection);
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.AddRange(values);
return cmd.ExecuteNonQuery();
}
public static int ExecuteCommand2(string sql, params SqlParameter[] values)
{
SqlCommand cmd = new SqlCommand(sql, Connection);
cmd.Parameters.AddRange(values);
return cmd.ExecuteNonQuery();
}
public static string GetScalar(string safeSql)
{
SqlCommand cmd = new SqlCommand(safeSql, Connection);
string result = cmd.ExecuteScalar().ToString();
return result;
}
public string GetScalar(string sql, params SqlParameter[] values)
{
SqlCommand cmd = new SqlCommand(sql, Connection);
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.AddRange(values);
string result = cmd.ExecuteScalar().ToString();
return result;
}
public static SqlDataReader GetReader(string safeSql)
{
SqlCommand cmd = new SqlCommand(safeSql, Connection);
SqlDataReader reader = cmd.ExecuteReader();
return reader;
}
using System;
using System.Collections.Generic;
using System.ComponentModel;
using System.Data;
using System.Drawing;
using System.Text;
using System.Windows.Forms;
namespace WindowsFormsApplication5
{
public partial class Form1 : Form
{
public Form1()
{
InitializeComponent();
}
private void btnADD_Click(object sender, EventArgs e)
{
string a = "aaa";
string b = "bbb";
string c = "ccc";
string d = "ddd";
string strSql = "insert into userinfo values('" + a + "','" + b + "','" + c + "','" + d + "',)";
int i = DBHelper.ExecuteCommand(strSql);
if (i > 0)
{
MessageBox.Show("数据增加成功");
}
else
{
MessageBox.Show("数据增加失败");
}
}
private void btnDelete_Click(object sender, EventArgs e)
{
string UserName = "aaa";
string strSql = "delete userinfo where username='"+UserName+"'";
int i = DBHelper.ExecuteCommand(strSql);
if (i > 0)
{
MessageBox.Show("用户删除成功");
}
else
{
MessageBox.Show("用户删除失败");
}
}
private void btnUpdate_Click(object sender, EventArgs e)
{
string UserName = "aaa";
string address = "北京市北京路1号";
string strSql = "update userinfo set UserAddress='"+address+"' where username='" + UserName + "'";
int i = DBHelper.ExecuteCommand(strSql);
if (i > 0)
{
MessageBox.Show("用户信息更新成功");
}
else
{
MessageBox.Show("用户信息更新失败");
}
}