public void SendNewMagEmailNow(List <string> sendto, string subject, string body, string magID, string userID)
{
foreach (string to in sendto)
{
if (to == null || to == "")
{
// do nothing
}
else if (to.Contains("@"))
{
using (MailMessage mm = new MailMessage("*****@*****.**", to))
{
mm.Subject = subject;
mm.Body = body;
SmtpClient smtp = new SmtpClient();
smtp.Host = "smtp.gmail.com";
smtp.EnableSsl = true;
mm.IsBodyHtml = true;
NetworkCredential networkcred = new NetworkCredential("*****@*****.**", Globals.emailPassword);
smtp.UseDefaultCredentials = true;
smtp.Credentials = networkcred;
smtp.Port = 587;
smtp.Send(mm);
}
MySharedClasses sharedObject = new MySharedClasses();
sharedObject.Log("magID: " + magID, Int32.Parse(userID), "mag posted");
}
}
}
protected void Logout_ServerClick(object sender, EventArgs e)
{
MySharedClasses sharedObject = new MySharedClasses();
sharedObject.Log("UserID " + Session["LoggedIn"] + " - ClientID " + Request.UserHostAddress, Int32.Parse(Session["LoggedInID"].ToString()), "logged out");
Session["LoggedIn"] = null;
Response.Redirect("default.aspx?lo=Y");
}
protected void AddNewMag_ServerClick(object sender, EventArgs e)
{
string SingleSub = "null";
if (chksingle.Checked == true)
{
SingleSub = "Single Issue";
}
else
{
SingleSub = "Subscription";
}
SqlConnection conn = new SqlConnection(ConfigurationManager.ConnectionStrings["ReMag-DBConnectionString"].ConnectionString);
SqlDataAdapter da = new SqlDataAdapter("INSERT INTO [MyMags] (title, posted, [retired], description, [type], [user], [price], [image]) VALUES (@title, @posted, @retired, @description, @type, @user, @price, @image)", conn);
da.SelectCommand.Parameters.AddWithValue("@title", txtTitle.Value);
da.SelectCommand.Parameters.AddWithValue("@posted", "N");
da.SelectCommand.Parameters.AddWithValue("@retired", "N");
da.SelectCommand.Parameters.AddWithValue("@description", txtDescription.Value);
da.SelectCommand.Parameters.AddWithValue("@type", SingleSub);
da.SelectCommand.Parameters.AddWithValue("@user", (string)Session["LoggedInID"]);
da.SelectCommand.Parameters.AddWithValue("@price", txtPrice.Value);
da.SelectCommand.Parameters.AddWithValue("@image", "/images/nopreview.png");
DataSet ds = new DataSet();
da.Fill(ds);
int magID = GetMagID((string)Session["LoggedInID"], txtTitle.Value);
SqlDataAdapter da2 = new SqlDataAdapter("INSERT INTO [images] ([MagID], [path]) VALUES (@MagID, @path)", conn);
da2.SelectCommand.Parameters.AddWithValue("@MagID", magID);
da2.SelectCommand.Parameters.AddWithValue("@path", "/images/nopreview.png");
DataSet ds2 = new DataSet();
da2.Fill(ds2);
MySharedClasses sharedObject = new MySharedClasses();
sharedObject.Log("title: " + txtTitle.Value, Int32.Parse(Session["LoggedInID"].ToString()), "new mag added");
Response.Redirect("MyMagazines.aspx?ad=Y");
}
protected void Login_ServerClick(object sender, EventArgs e)
{
SqlConnection conn = new SqlConnection(ConfigurationManager.ConnectionStrings["ReMag-DBConnectionString"].ConnectionString);
using (SqlCommand sqlCommand = new SqlCommand("SELECT COUNT(*) from Profile WHERE name = @name AND password = @password", conn))
{
conn.Open();
sqlCommand.Parameters.AddWithValue("@name", username.Value);
sqlCommand.Parameters.AddWithValue("@password", password.Value);
int userCount = (int)sqlCommand.ExecuteScalar();
if (userCount > 0)
{
Session["LoggedInID"] = GetUserID(username.Value);
Session["LoggedIn"] = username.Value;
MySharedClasses sharedObject = new MySharedClasses();
sharedObject.Log("UserID " + Session["LoggedIn"] + " - ClientID " + Request.UserHostAddress, Int32.Parse(Session["LoggedInID"].ToString()), "logged in");
Response.Redirect("default.aspx?ln=Y");
}
else
{
Response.Redirect("default.aspx?lf=Y");
}
}
}
protected void Page_Load(object sender, EventArgs e)
{
if (Session["LoggedIn"] != null)
{
((HtmlAnchor)(FindControl("loginbtn"))).InnerText = "Log Out";
((HtmlAnchor)FindControl("loginbtn2")).InnerText = "Log Out";
txtUserId.InnerText = (String)Session["LoggedIn"];
((HtmlAnchor)(FindControl("loginbtn"))).HRef = "#modal2";
((HtmlAnchor)(FindControl("loginbtn2"))).HRef = "#modal2";
((HtmlAnchor)(FindControl("loginbtn"))).Attributes.Add("class", "waves-effect waves-light btn modal-trigger green lighten-2");
((HtmlAnchor)(FindControl("loginbtn2"))).Attributes.Add("class", "waves-effect waves-light btn modal-trigger green lighten-2");
}
else
{
Response.Redirect("default.aspx?dn=Y");
}
// retire mag
if (!String.IsNullOrEmpty(Request.QueryString["ret"]))
{
magID = Request.QueryString["ret"];
string CS = ConfigurationManager.ConnectionStrings["ReMag-DBConnectionString"].ConnectionString;
using (SqlConnection conn = new SqlConnection(CS))
{
SqlDataAdapter da = new SqlDataAdapter("UPDATE MyMags SET retired = 'Y', posted = 'N' WHERE MagID = '" + magID + "'", conn);
DataSet ds = new DataSet();
da.Fill(ds);
}
}
// unretire
if (!String.IsNullOrEmpty(Request.QueryString["unret"]))
{
magID = Request.QueryString["unret"];
string CS = ConfigurationManager.ConnectionStrings["ReMag-DBConnectionString"].ConnectionString;
using (SqlConnection conn = new SqlConnection(CS))
{
SqlDataAdapter da = new SqlDataAdapter("UPDATE MyMags SET retired = 'N', posted = 'N' WHERE MagID = '" + magID + "'", conn);
DataSet ds = new DataSet();
da.Fill(ds);
}
}
// post the mag
if (!String.IsNullOrEmpty(Request.QueryString["pid"]))
{
magID = Request.QueryString["pid"];
string CS = ConfigurationManager.ConnectionStrings["ReMag-DBConnectionString"].ConnectionString;
using (SqlConnection conn = new SqlConnection(CS))
{
SqlDataAdapter da = new SqlDataAdapter("UPDATE MyMags SET posted = 'Y' WHERE MagID = '" + magID + "'", conn);
DataSet ds = new DataSet();
da.Fill(ds);
}
var x = "no title";
var y = "no description";
SqlConnection conn2 = new SqlConnection(ConfigurationManager.ConnectionStrings["ReMag-DBConnectionString"].ConnectionString);
conn2.Open();
var cmd = new SqlCommand();
cmd.CommandText = "SELECT * FROM MyMags WHERE [MagID] = " + Request.QueryString["pid"];
cmd.Connection = conn2;
var reader = cmd.ExecuteReader();
if (reader.HasRows)
{
while (reader.Read())
{
x = (string)reader["title"];
y = (string)reader["description"];
}
}
reader.Close();
conn2.Close();
SendMail senderObject = new SendMail();
List <string> myList = senderObject.GetSubscribedEmails(); // adds all emails to a List<string>
senderObject.SendNewMagEmailNow(myList, // sends list to sender object
"New Mag available on ReMag",
"<h1>New Mag available on ReMag</h1>A user of Remag has posted a new magazine." +
"Go to mstrong.ca:88 to view.<br><br><b>title:</b> " + x + "<br><b>description:</b> " + y + "<br/><br/>" +
"<a href=\"http://mstrong.ca:88\">http://mstrong.ca:88</a>.<br/><br/><br/>",
Request.QueryString["pid"],
Session["LoggedInID"].ToString());
}
// unpost the mag
if (!String.IsNullOrEmpty(Request.QueryString["uid"]))
{
magID = Request.QueryString["uid"];
string CS = ConfigurationManager.ConnectionStrings["ReMag-DBConnectionString"].ConnectionString;
using (SqlConnection conn = new SqlConnection(CS))
{
SqlDataAdapter da = new SqlDataAdapter("UPDATE MyMags SET posted = 'N' WHERE MagID = '" + magID + "'", conn);
DataSet ds = new DataSet();
da.Fill(ds);
}
MySharedClasses sharedObject = new MySharedClasses();
sharedObject.Log("magID: " + magID, Int32.Parse(Session["LoggedInID"].ToString()), "mag un-posted");
}
}
