17168ERP/web/admin/user/pass_edit.aspx.cs

using System;
using System.Collections;
using System.Collections.Generic;
using System.Data;
using System.Data.OleDb;
using System.Web;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Configuration;


public partial class admin_user_pass_edit : MyWeb.config
{
    protected void Page_Load(object sender, EventArgs e)
    {
        if (!IsPostBack) {

            MyWeb.security security = new MyWeb.security();
            psdRule.ValidationExpression = security.PasswordValidator();
            psdRule.ErrorMessage = security.PasswordNotice();
            if (isStrNull(psdRule.ValidationExpression))
                psdRule.Visible = false;

            MyWeb.sql sql = new MyWeb.sql();
            OleDbConnection sqlConn = sql.conn(db, p_name);
            try
            {
                sqlConn.Open();
                OleDbCommand sqlCmd = new OleDbCommand("", sqlConn);
                sqlCmd.CommandText = "SELECT * FROM admin Where u_id=? and num=?";
                sqlCmd.Parameters.Add(new OleDbParameter("u_id", admin.info.u_id));
                sqlCmd.Parameters.Add(new OleDbParameter("num", admin.info.num));
                DataTable dt = sql.dataTable(sqlCmd);
                if (dt.Rows.Count > 0)
                {
                    L_u_id.Text = dt.Rows[0]["u_id"].ToString();
                  
                
                    ViewState["num"] = dt.Rows[0]["num"].ToString();
                }
                else {
                    ScriptMsg2("無此帳號！", "../index2.aspx", msgIcon.error);
                    //Response.Redirect("../index2.aspx");
                }
            }
            catch (Exception ex)
            {
                Response.Write(ex.Message);
            }
            finally
            {
                sqlConn.Close(); sqlConn.Dispose();
            }

        }
    }

    #region 資料修改
    
    #endregion

    protected void edit_Click(object sender, EventArgs e)
    {
        L_msg.Text = "";
        MyWeb.encrypt encrypt = new MyWeb.encrypt();

        MyWeb.sql sql = new MyWeb.sql();
        OleDbConnection sqlConn = sql.conn(db, p_name);
        try
        {
            sqlConn.Open();
            OleDbCommand sqlCmd = new OleDbCommand("", sqlConn);
            sqlCmd.CommandText = "UPDATE admin SET u_password=? WHERE num=?";
            sqlCmd.Parameters.Add(new OleDbParameter("u_password", encrypt.EncryptAutoKey(Password.Text)));
            sqlCmd.Parameters.Add(new OleDbParameter("num", ViewState["num"].ToString()));
            sqlCmd.ExecuteNonQuery();
            L_msg.Type = alert_type.success;
            L_msg.Text = "資料修改成功，新的密碼將於下次登錄生效！";
        }
        catch (Exception ex)
        {
            L_msg.Text = ex.Message;
            L_msg.Type = alert_type.danger;
        }
        finally
        {
            sqlConn.Close(); sqlConn.Dispose();
        }
        
    }
}