1using System;
 2using System.Data;
 3using System.Data.SqlClient;
 4using System.Configuration;
 5using System.Collections;
 6using System.Web;
 7using System.Web.Security;
 8using System.Web.UI;
 9using System.Web.UI.WebControls;
10using System.Web.UI.WebControls.WebParts;
11using System.Web.UI.HtmlControls;
12
13public partial class SysConfigure : System.Web.UI.Page
14...{    
15    protected void Page_Load(object sender, EventArgs e)
16    ...{
17       this.Header.Title = Application.Get("siteName") + "---" + this.Header.Title;        
18    }
19
20    private string StringFilter(string inStr)
21    ...{
22        string outStr;
23        outStr = inStr.Trim().Replace("\'", "");
24        return outStr;
25    }
26
27    protected void UserRegBtn_Click(object sender, EventArgs e)
28    ...{
29        if (Page.IsValid)
30        ...{
31            try
32            ...{
33                string conStr = Application.Get("conStr").ToString();
34                SqlConnection sqlCon = new SqlConnection(conStr);
35                sqlCon.Open();
36
37                string unStr = StringFilter(userName.Text);
38                
39                string cmdStr = "select name from userInfo where name = '"+unStr+"'";
40                SqlCommand sqlCmd = new SqlCommand(cmdStr, sqlCon);
41                SqlDataReader sqlDR = sqlCmd.ExecuteReader();
42                if (sqlDR.Read())
43                ...{
44                    info.Text = "用户" + unStr + "已经存在，请重新选择用户名。";
45                    sqlDR.Close();
46                }
47                else
48                ...{
49                    sqlDR.Close();
50                    string pwdStr = StringFilter(pwd.Text);
51                    string infoStr = StringFilter(infoTxt.Text);
52                    string pwdMD5 = FormsAuthentication.HashPasswordForStoringInConfigFile(pwdStr, "MD5").ToString();
53                    cmdStr = "insert into userInfo(name,pwd,info,registerTime,point) values('" + unStr + "','" + pwdMD5 + "','" + infoStr + "','"+DateTime.Now+"','0')";
54                    //info.Text = cmdStr;
55                    sqlCmd.CommandText = cmdStr;
56                    sqlCmd.Connection = sqlCon;
57                    sqlCmd.ExecuteNonQuery();
58
59                    if (Session["userName"] != null)
60                        Session["userName"] = unStr;
61                    else
62                        Session.Add("userName", unStr);
63
64                    if (Session["userPoint"] != null)
65                        Session["userPoint"] = 0;
66                    else
67                        Session.Add("userPoint",'0');
68
69                    info.Text = "操纵成功,请牢记注册信息。<br />用户名：" + unStr + "，密码：" + pwdStr;
70                }
71                
72                sqlCon.Close();
73            }
74            catch (Exception ex)
75            ...{
76                info.Text = "系统操纵错误：" + ex.Message;
77                
78                //throw new Exception(ex.Message, ex);
79            }
80        }
81    }
82}
83