Ò׽ؽØͼÈí¼þ¡¢µ¥Îļþ¡¢Ãâ°²×°¡¢´¿ÂÌÉ«¡¢½ö160KB

asp.net(c#) ÏÂSQL´æ´¢¹ý³ÌʹÓÃÏêϸʵÀý

¼ÇÈ¡¼Ç¼¼¯
create procedure getArticle
as
select * from Article_Content
GO
asp.net µ÷Ó÷½·¨
  SqlConnection Conn = new SqlConnection();
        Conn.ConnectionString = Data.Connstr();
        Conn.Open();
        SqlDataAdapter sdr=new SqlDataAdapter();
        sdr.SelectCommand = new SqlCommand("getArticle", Conn);
        sdr.SelectCommand.CommandType=CommandType.StoredProcedure;
        DataSet rs = new DataSet();
        sdr.Fill(rs);
        sdr.Dispose();
        Conn.Dispose();
        Response.Write(rs.Tables[0].Rows.Count);
       
-------------------------------------------------------------------------------------
ɾ³ý¼Ç¼(´øÊäÈë²ÎÊý)
create procedure DelArticle
@Id int
as
delete from Article_Content where Id=@Id
GO
asp.netµ÷Ó÷½·¨
 if (Request.QueryString["Id"] != null)
        {
            SqlConnection Conn = new SqlConnection();
            Conn.ConnectionString = Data.Connstr();
            Conn.Open();
            SqlCommand cmd = new SqlCommand("DelArticle", Conn);
            cmd.CommandType = CommandType.StoredProcedure;
            cmd.Parameters.Add("@Id", SqlDbType.Int,4).Value = int.Parse(Request.QueryString["Id"].ToString());
     &


Ïà¹ØÎĵµ£º

Sql(ÊÂÎï+Óαê)ʹÓ÷½·¨

--µ±Á½¸ö»òÁ½ÒÔÉϵIJÙ×÷Ҫô¶¼Ö´ÐУ¬ÒªÃ´¶¼²»Ö´ÐÐʱҪÓÃÊÂÎñ¡£
1. Sqlд·¨(ÊÂÎï+Óαê)
--¿ªÊ¼ÊÂÎñ
BEGIN TRAN
--²»ÏÔʾ¼ÆÊýÐÅÏ¢
SET NOCOUNT ON
DECLARE @ProjNo varchar(50),@CusNo varchar(50)
--ÉùÃ÷Óαê
DECLARE CRMPSContact_cursor CURSOR FOR 
SEL ......

¸ßÊÖÏê½âSQLÐÔÄÜÓÅ»¯Ê®Ìõ¾­Ñé

1.²éѯµÄÄ£ºýÆ¥Åä
¾¡Á¿±ÜÃâÔÚÒ»¸ö¸´ÔÓ²éѯÀïÃæʹÓà LIKE '%parm1%'—— ºìÉ«±êʶλÖõİٷֺŻᵼÖÂÏà¹ØÁеÄË÷ÒýÎÞ·¨Ê¹Óã¬×îºÃ²»ÒªÓÃ.
½â¾ö°ì·¨:
ÆäʵֻÐèÒª¶Ô¸Ã½Å±¾ÂÔ×ö¸Ä½ø£¬²éѯËٶȱã»áÌá¸ß½ü°Ù±¶¡£¸Ä½ø·½·¨ÈçÏ£º
a¡¢ÐÞ¸Äǰ̨³ÌÐò——°Ñ²éѯÌõ¼þµÄ¹©Ó¦ÉÌÃû³ÆÒ»À¸ÓÉÔ­À´µÄÎı¾ÊäÈë¸ÄΪÏÂÀ­Áб ......

SQL ·À×¢Èëʽ¹¥»÷

1¡¢¼ì²éÊÇ·ñÓзǷ¨×Ö·û
public static boolean sql_inj(String str)
{
    String inj_str = "'|and|exec|insert|select|delete|update|
count|*|%|chr|mid|master|truncate|char|declare|;|or|-|+|,";
//ÕâÀïµÄ¶«Î÷»¹¿ÉÒÔ×Ô¼ºÌí¼Ó
String[] inj_stra=inj_str.split("\\|");
    for ......

ASP.NETÖеÄFormsºÍWindows»ìºÏÑéÖ¤

±¾ÎÄ·­Òë×Ô£ºMixing Forms and Windows Security in ASP.NET
ÕªÒª£ºASP.NET¿ª·¢ÈËÔ±Ôø¾­Îʵ½¹ýÈçºÎʹÓÃFormsºÍWindows»ìºÏÑéÖ¤¡£Paul WilsonÌṩÁËÒ»¸ö½â¾ö·½°¸À´»ñµÃWindowsÓû§Ãû£¬»òÕߣ¬½«Óû§×ªÏòµÇ¼ҳÃæ¡£
¼ò½é
ÎÒÔø¾­Óöµ½ºÜ¶àASP.NET¿ª·¢ÈËÔ±Îʵ½ÈçºÎʹÓÃFormsºÍWindows»ìºÏÑéÖ¤¡£Í¨³£µÄ»Ø´ðÊÇ£º“ASP.NET²» ......

ASP.NETÖÐÀûÓÃJSʵÏÖͼƬ¹ö¶¯

               JS´úÂë:
 
                           <script type="text/javascript" languag ......
© 2009 ej38.com All Rights Reserved. ¹ØÓÚE½¡ÍøÁªÏµÎÒÃÇ | Õ¾µãµØͼ | ¸ÓICP±¸09004571ºÅ