1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40
| protected void Button1_Click(object sender, EventArgs e)
{
// Chaîne de connexion
string connectString = "database=database;server=serveur;User ID=login;pwd=mot_passe";
// Objet connection
SqlConnection connection = new SqlConnection(connectString);
// Ouverture
connection.Open();
// Objet Command
SqlCommand command = new SqlCommand("SELECT * FROM Tiers WHERE " +
"Tiers = @Poste AND password = @MdP",
connection);
// Paramètres
command.Parameters.Add(new SqlParameter("@Poste", SqlDbType.VarChar, 20));
command.Parameters["@Poste"].Value = Login.Text;
command.Parameters.Add(new SqlParameter("@MdP", SqlDbType.VarChar, 8));
command.Parameters["@MdP"].Value = MdP.Text;
// Object datareader
SqlDataReader reader = command.ExecuteReader();
while (reader.Read())
{
Session["var"] = reader["champ"].ToString();
Session["var2"] = reader["champ2"].ToString();
Session["var3"] = reader["champ3"].ToString();
Session["var4"] = reader["champ4"].ToString();
Button1.PostBackUrl = "~/page.aspx?id=valeur";
}
// Fermeture reader
reader.Close();
// Fermeture base
connection.Close();
} |
Partager