/// <method>
/// Get User Email By Firstname or Lastname and return DalaTable
/// </method>
public DataTable searchUserId(string username, string pass)
{
string query = string.Format("SELECT UserId FROM TAIKHOAN WHERE UserName=@UserName and PassWord=@PassWord");
SqlParameter[] sqlParameters = new SqlParameter[2];
sqlParameters[0] = new SqlParameter("@UserName", SqlDbType.VarChar);
sqlParameters[0].Value = Convert.ToString(username);
sqlParameters[1] = new SqlParameter("@PassWord", SqlDbType.VarChar);
sqlParameters[1].Value = Convert.ToString(pass);
return(conn.executeSelectQuery(query, sqlParameters));
}
/// <method>
/// Get User Email By Firstname or Lastname and return DalaTable
/// </method>
public DataTable searchByName(string _username)
{
string query = string.Format("select * from [t01_user] where t01_firstname like @t01_firstname or t01_lastname like @t01_lastname ");
SqlParameter[] sqlParameters = new SqlParameter[2];
sqlParameters[0] = new SqlParameter("@t01_firstname", SqlDbType.VarChar);
sqlParameters[0].Value = Convert.ToString(_username);
sqlParameters[1] = new SqlParameter("@t01_lastname", SqlDbType.VarChar);
sqlParameters[1].Value = Convert.ToString(_username);
return(conn.executeSelectQuery(query, sqlParameters));
}
