using System; using System.Collections; using System.ComponentModel; using System.Data; using System.Drawing; using System.Web; using System.Web.SessionState; using System.Web.UI; using System.Web.UI.WebControls; using System.Web.UI.HtmlControls; using System.Data.SqlClient; namespace SampleCS.Upload { /// /// Modify¿¡ ´ëÇÑ ¿ä¾à ¼³¸íÀÔ´Ï´Ù. /// public class Modify : System.Web.UI.Page { protected System.Web.UI.WebControls.Label lblNum; protected System.Web.UI.WebControls.TextBox txtName; protected System.Web.UI.WebControls.TextBox txtEmail; protected System.Web.UI.WebControls.RegularExpressionValidator RegularExpressionValidator1; protected System.Web.UI.WebControls.TextBox txtTitle; protected System.Web.UI.WebControls.RequiredFieldValidator Requiredfieldvalidator2; protected System.Web.UI.WebControls.TextBox txtContent; protected System.Web.UI.WebControls.RequiredFieldValidator RequiredFieldValidator3; protected System.Web.UI.WebControls.TextBox txtPassword; protected System.Web.UI.WebControls.RequiredFieldValidator RequiredFieldValidator4; protected System.Web.UI.WebControls.Button btnModify; protected System.Web.UI.WebControls.Label lblError; protected System.Web.UI.WebControls.ValidationSummary ValidationSummary1; protected System.Web.UI.WebControls.TextBox txtHomepage; protected System.Web.UI.WebControls.RegularExpressionValidator Regularexpressionvalidator2; protected System.Web.UI.WebControls.RadioButtonList rdoEncoding; protected System.Web.UI.WebControls.Button btnList; protected string strNum;//¾Õ¿¡¼­ ³Ñ°ÜÁ® ¿Â ¹øÈ£ ÀúÀå private void Page_Load(object sender, System.EventArgs e) { strNum = Request.QueryString["Num"]; if(strNum == null) { Response.Redirect("./List.aspx"); } if(!this.IsPostBack) { ReadData();//³Ñ°ÜÁ® ¿Â ¹øÈ£¿¡ ÇØ´çÇÏ´Â ±Û¸¸ Àо °¢ ·¹ÀÌºí¿¡ Ãâ·Â } } private void ReadData() { SqlConnection objCon = new SqlConnection(); objCon.ConnectionString = Application["CONNECTION_STRING"].ToString(); objCon.Open(); SqlCommand objCmd = new SqlCommand(); objCmd.Connection = objCon; objCmd.CommandText = "procViewUpload"; objCmd.CommandType = CommandType.StoredProcedure; objCmd.Parameters.Add("@Num", SqlDbType.Int); objCmd.Parameters["@Num"].Value = int.Parse(strNum); objCmd.ExecuteNonQuery(); SqlDataReader objDr = objCmd.ExecuteReader(); if(objDr.Read()) { lblNum.Text = strNum; txtName.Text = objDr["Name"].ToString();//À̸§ txtEmail.Text = objDr["Email"].ToString(); txtHomepage.Text = objDr["Homepage"].ToString(); txtTitle.Text = objDr["Title"].ToString(); txtContent.Text = objDr["Content"].ToString(); } objDr.Close(); objCon.Close(); } #region Web Form Designer generated code override protected void OnInit(EventArgs e) { // // CODEGEN: ÀÌ È£ÃâÀº ASP.NET Web Form µðÀÚÀ̳ʿ¡ ÇÊ¿äÇÕ´Ï´Ù. // InitializeComponent(); base.OnInit(e); } /// /// µðÀÚÀÌ³Ê Áö¿ø¿¡ ÇÊ¿äÇÑ ¸Þ¼­µåÀÔ´Ï´Ù. /// ÀÌ ¸Þ¼­µåÀÇ ³»¿ëÀ» ÄÚµå ÆíÁý±â·Î ¼öÁ¤ÇÏÁö ¸¶½Ê½Ã¿À. /// private void InitializeComponent() { this.btnModify.Click += new System.EventHandler(this.btnModify_Click); this.btnList.Click += new System.EventHandler(this.btnList_Click); this.Load += new System.EventHandler(this.Page_Load); } #endregion private void btnModify_Click(object sender, System.EventArgs e) { SqlConnection objCon = new SqlConnection(); objCon.ConnectionString = Application["CONNECTION_STRING"].ToString(); objCon.Open(); string strName = txtName.Text.Replace("&", "&").Replace("<", "<").Replace(">", ">"); string strTitle = txtTitle.Text.Replace("&", "&").Replace("<", "<").Replace(">", ">"); SqlCommand objCmd = new SqlCommand(); objCmd.Connection = objCon; objCmd.CommandText = "procReadPassword"; objCmd.CommandType = CommandType.StoredProcedure; objCmd.Parameters.Add("@Num", SqlDbType.Int); objCmd.Parameters["@Num"].Value = int.Parse(strNum); string strPassword = objCmd.ExecuteScalar().ToString(); objCmd.Parameters.Clear(); if(strPassword == txtPassword.Text.ToString()) { objCmd.CommandText = "procUpdateUpload"; objCmd.Parameters.Add("@Name", SqlDbType.VarChar, 25); objCmd.Parameters.Add("@Email", SqlDbType.VarChar, 100); objCmd.Parameters.Add("@Title", SqlDbType.VarChar, 150); objCmd.Parameters.Add("@ModifyIP", SqlDbType.VarChar, 15); objCmd.Parameters.Add("@ModifyDate", SqlDbType.DateTime); objCmd.Parameters.Add("@Content", SqlDbType.Text); objCmd.Parameters.Add("@Encoding", SqlDbType.VarChar, 10); objCmd.Parameters.Add("@Homepage", SqlDbType.VarChar, 100); objCmd.Parameters.Add("@Num", SqlDbType.Int); objCmd.Parameters["@Name"].Value = strName; objCmd.Parameters["@Email"].Value = txtEmail.Text; objCmd.Parameters["@Title"].Value = strTitle; objCmd.Parameters["@ModifyIP"].Value = Request.UserHostAddress; objCmd.Parameters["@ModifyDate"].Value = DateTime.Now;//¼öÁ¤ÀÏ objCmd.Parameters["@Content"].Value = txtContent.Text; objCmd.Parameters["@Encoding"].Value = rdoEncoding.SelectedItem.Text; objCmd.Parameters["@Homepage"].Value = txtHomepage.Text; objCmd.Parameters["@Num"].Value = strNum; objCmd.CommandType = CommandType.StoredProcedure; objCmd.ExecuteNonQuery(); Response.Redirect("./View.aspx?Num=" + strNum);//¼öÁ¤Çß´ø ±Û } else { lblError.Text = "ºñ¹Ð¹øÈ£°¡ Ʋ¸³´Ï´Ù."; } objCon.Close(); } private void btnList_Click(object sender, System.EventArgs e) { Response.Redirect("./List.aspx"); } } }