public ActionResult editprofile(retrievuser user)
{
/// string connectionString = "server=localhost;user id=root;database=mydb;persistsecurityinfo=True";
string conString = ConfigurationManager.ConnectionStrings["sbsclatest"].ConnectionString.ToString();
MySqlConnection con = new MySqlConnection(conString);
/// con. connectionString = "server=localhost;user id=root;database=mydb;persistsecurityinfo=True";
///
/// open the connection
con.Open();
ViewBag.successMessage = "connection was established";
string theSql = "UPDATE user SET iduser=@iduser,firstname=@firstname,lastname=@lastname,Username=@username,email=@email, role=@role, password=@password WHERE iduser=@iduser";
MySqlCommand command = new MySqlCommand(theSql, con);
command.Parameters.AddWithValue(("@iduser"), user.idUser);
command.Parameters.AddWithValue(("@firstname"), user.FirstName);
command.Parameters.AddWithValue(("@lastname"), user.LastName);
command.Parameters.AddWithValue(("@Username"), user.username);
command.Parameters.AddWithValue(("@email"), user.Email);
command.Parameters.AddWithValue(("@role"), user.Role);
command.Parameters.AddWithValue(("@password"), user.Password);
command.ExecuteNonQuery();
ViewBag.success = "Registration Successful";
con.Close();
return(RedirectToAction("landingpage"));
}
public ActionResult UserRole(retrievuser user)
{
DataTable dtblproduct = new DataTable();
/* user.idUser = (int)Session["iduser"]*/
try
{
string conString = ConfigurationManager.ConnectionStrings["sbsclatest"].ConnectionString.ToString();
MySqlConnection con = new MySqlConnection(conString);
con.Open();
ViewBag.successMessage = "connection was established";
string theSql = "SELECT iduser, firstname,lastname,username,role FROM user";
MySqlDataAdapter command = new MySqlDataAdapter(theSql, con);
command.Fill(dtblproduct);
if (dtblproduct.Rows.Count == 1)
{
return(View(dtblproduct));
}
else
{
return(RedirectToAction("courselist"));
}
}
catch (Exception e)
{
ViewBag.errorMessage = e.Message;
}
return(View(dtblproduct));
}
public ActionResult editprofile(int id)
{
retrievuser user = new retrievuser();
DataTable dtblproduct = new DataTable();
user.idUser = (int)Session["iduser"];
try
{
string conString = ConfigurationManager.ConnectionStrings["sbsclatest"].ConnectionString.ToString();
MySqlConnection con = new MySqlConnection(conString);
/// con. connectionString = "server=localhost;user id=root;database=mydb;persistsecurityinfo=True";
///
/// open the connection
con.Open();
ViewBag.successMessage = "connection was established";
string theSql = "SELECT * FROM user WHERE iduser=@iduser";
MySqlDataAdapter command = new MySqlDataAdapter(theSql, con);
command.SelectCommand.Parameters.AddWithValue("@iduser", user.idUser);
command.Fill(dtblproduct);
if (dtblproduct.Rows.Count == 1)
{
user.idUser = Convert.ToInt32(dtblproduct.Rows[0][0].ToString());
user.FirstName = dtblproduct.Rows[0][1].ToString();
user.LastName = dtblproduct.Rows[0][2].ToString();
user.username = dtblproduct.Rows[0][3].ToString();
user.Email = dtblproduct.Rows[0][4].ToString();
user.Role = dtblproduct.Rows[0][5].ToString();
user.Password = dtblproduct.Rows[0][6].ToString();
return(View(user));
}
else
{
return(RedirectToAction("courselist"));
}
}
catch (Exception e)
{
ViewBag.errorMessage = e.Message;
}
return(View(user));
}
public ActionResult changeRole(retrievuser user)
{
string conString = ConfigurationManager.ConnectionStrings["sbsclatest"].ConnectionString.ToString();
MySqlConnection con = new MySqlConnection(conString);
/// con. connectionString = "server=localhost;user id=root;database=mydb;persistsecurityinfo=True";
///
/// open the connection
con.Open();
ViewBag.successMessage = "connection was established";
string theSql = "UPDATE user SET role=@role WHERE iduser=@iduser";
MySqlCommand command = new MySqlCommand(theSql, con);
command.Parameters.AddWithValue(("@iduser"), user.idUser);
command.Parameters.AddWithValue(("@role"), user.Role);
command.ExecuteNonQuery();
ViewBag.success = "Registration Successful";
con.Close();
return(RedirectToAction("UserRole"));
}
