using System;
using System.Data;
using System.Configuration;
using System.Collections;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Web.UI.HtmlControls;
using System.Data.SqlClient;
public partial class Board_Edit : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
if (!IsPostBack)
{
FillEditContent();
}
}
private void FillEditContent()
{
string boardID = Request.QueryString["BoardID"];
SqlConnection conn =
new SqlConnection(ConfigurationManager.ConnectionStrings["DBconStr"].ConnectionString);
string strSelQry = "SELECT writer, title,content " +
"FROM t_board " +
"WHERE boardID = @boardID ";
SqlCommand cmd = new SqlCommand(strSelQry, conn);
cmd.Parameters.Add("@boardID", SqlDbType.Int).Value = boardID;
conn.Open();
SqlDataReader read = cmd.ExecuteReader();
if (read.Read())
{
txtWriter.Text = read["writer"].ToString();
txtTitle.Text = read["title"].ToString();
txtContent.Text = read["content"].ToString();
}
read.Close();
conn.Close();
}
protected void ibOK_Click(object sender, ImageClickEventArgs e)
{
UpdateContent();
Response.Redirect("~/board_list.aspx");
}
private void UpdateContent()
{
SqlConnection conn =
new SqlConnection(ConfigurationManager.ConnectionStrings["DBconStr"].ConnectionString);
string strUpQry = "UPDATE t_board SET " +
"writer = @writer, " +
"title = @title ," +
"content = @content " +
"WHERE BoardID = @BoardID ";
SqlCommand cmd = new SqlCommand(strUpQry, conn);
cmd.Parameters.Add("@writer", SqlDbType.NVarChar,50).Value = txtWriter.Text.Trim();
cmd.Parameters.Add("@title", SqlDbType.NVarChar,200).Value = txtTitle.Text.Trim();
cmd.Parameters.Add("@content", SqlDbType.NText).Value = txtContent.Text;
cmd.Parameters.Add("@BoardId", SqlDbType.Int).Value = Request.QueryString["boardid"];
//Response.Write("<script>javascript:alert('"+"/"+"') </script>");
conn.Open();
cmd.ExecuteNonQuery();
conn.Close();
}
}