public void RateABeer(BeerRatingModel rating) { try { using (SqlConnection conn = new SqlConnection(connectionString)) { conn.Open(); //SqlCommand cmd = new SqlCommand(@"INSERT INTO BeerRating VALUES (@beerId, @beerRating, @userId)", conn); SqlCommand cmd = new SqlCommand(@"IF EXISTS (SELECT * FROM BeerRating WHERE BeerId = @beerId AND UserId = @userId) BEGIN UPDATE BeerRating SET BeerRating = @beerRating WHERE BeerId = @BeerId AND UserId = @userId END ELSE BEGIN INSERT INTO BeerRating VALUES (@beerId, @beerRating, @userId) END", conn); cmd.Parameters.AddWithValue("@beerId", rating.BeerId); cmd.Parameters.AddWithValue("@beerRating", rating.BeerRating); cmd.Parameters.AddWithValue("@userId", rating.UserId); cmd.ExecuteNonQuery(); } } catch (SqlException ex) { Console.WriteLine(ex); } }
public ActionResult BeerRating(BeerRatingModel model) { model.UserId = Guid.Parse(User.Identity.GetUserId()); beerRatingDAL.RateABeer(model); return(RedirectToAction($"BeerInfo/{model.BeerId}", model)); }