public ActionResult AdminDashboard(WEBSITE_USER admin) { try { if (admin.Email == null || admin.Password == null) { System.Threading.Thread.Sleep(2000); ViewBag.EmptyAdmin = true; return(View("AdminLogin")); } else { System.Threading.Thread.Sleep(2000); String Admin_Email = new DB_CONNECTION().Database.SqlQuery <String>("SELECT Email FROM ADMINS WHERE Email ='" + admin.Email + "'").FirstOrDefault <String>(); String Admin_Pass = new DB_CONNECTION().Database.SqlQuery <String>("SELECT Password FROM ADMINS WHERE Email ='" + admin.Email + "'").FirstOrDefault <String>(); if (admin.Email.Equals(Admin_Email) && admin.Password.Equals(Admin_Pass)) { System.Threading.Thread.Sleep(2000); return(View("Dashboard")); } else { ViewBag.isRightAdmin = false; return(View("AdminLogin")); } } } catch (Exception e) { ViewBag.isRightAdmin = false; return(View("AdminLogin")); } }
public ActionResult user_login(WEBSITE_USER user) { try { if (user.Email == null || user.Password == null) { System.Threading.Thread.Sleep(2000); ViewBag.EmptyLogin = true; return(View("Login")); } else { System.Threading.Thread.Sleep(2000); String User_Email = new DB_CONNECTION().Database.SqlQuery <String>("SELECT Email FROM USERS WHERE Email ='" + user.Email + "'").FirstOrDefault <String>(); String User_Name = new DB_CONNECTION().Database.SqlQuery <String>("SELECT User_name FROM USERS WHERE Email ='" + user.Email + "'").FirstOrDefault <String>(); String User_Pass = new DB_CONNECTION().Database.SqlQuery <String>("SELECT Password FROM USERS WHERE Email ='" + user.Email + "'").FirstOrDefault <String>(); if (user.Email.Equals(User_Email) && user.Password.Equals(User_Pass)) { System.Threading.Thread.Sleep(2000); ViewBag.USERNAME = User_Name; int i; String COURSE_NAME = null; String COURSE_PLACE = null; String COURSE_DAY = null; int COURSE_HOUR = 0; int COURSE_MIN = 0; int COURSE_ID = 0; int MAX_STD_NUM = 0; try { int n = new DB_CONNECTION().Database.SqlQuery <int>("SELECT COUNT(Course_ID) FROM COURSEs WHERE Course_ID NOT IN (SELECT Course_ID FROM " + User_Name + ") AND Max_Students_Number != 0").FirstOrDefault <int>(); if (n != 0) { int[] ID = new int[n]; new DB_CONNECTION().Database.ExecuteSqlCommand("INSERT INTO TEMP(ID)(SELECT Course_ID FROM COURSEs WHERE Course_ID NOT IN (SELECT Course_ID FROM " + User_Name + ") AND Max_Students_Number != 0)"); for (i = 0; i < n; i++) { ID[i] = new DB_CONNECTION().Database.SqlQuery <int>("SELECT TOP 1 ID FROM TEMP").FirstOrDefault <int>(); new DB_CONNECTION().Database.ExecuteSqlCommand("DELETE TOP (1) FROM TEMP"); } List <COURSE> COURSE_LIST = new List <COURSE>(); for (i = 0; i < n; i++) { COURSE_ID = new DB_CONNECTION().Database.SqlQuery <int>("SELECT Course_ID FROM COURSEs WHERE Course_ID = " + ID[i]).FirstOrDefault <int>(); COURSE_NAME = new DB_CONNECTION().Database.SqlQuery <String>("SELECT Course_Name FROM COURSEs WHERE Course_ID = " + ID[i]).FirstOrDefault <String>(); COURSE_HOUR = new DB_CONNECTION().Database.SqlQuery <int>("SELECT Course_Hours FROM COURSEs WHERE Course_ID = " + ID[i]).FirstOrDefault <int>(); COURSE_MIN = new DB_CONNECTION().Database.SqlQuery <int>("SELECT Course_Min FROM COURSEs WHERE Course_ID = " + ID[i]).FirstOrDefault <int>(); COURSE_DAY = new DB_CONNECTION().Database.SqlQuery <String>("SELECT Course_Day FROM COURSEs WHERE Course_ID = " + ID[i]).FirstOrDefault <String>(); COURSE_PLACE = new DB_CONNECTION().Database.SqlQuery <String>("SELECT Course_Place FROM COURSEs WHERE Course_ID = " + ID[i]).FirstOrDefault <String>(); MAX_STD_NUM = new DB_CONNECTION().Database.SqlQuery <int>("SELECT Max_Students_Number FROM COURSEs WHERE Course_ID = " + ID[i]).FirstOrDefault <int>(); COURSE_LIST.Add(new COURSE { Course_ID = COURSE_ID, Course_Name = COURSE_NAME, Course_Hours = COURSE_HOUR, Course_Min = COURSE_MIN, Course_Day = COURSE_DAY, Course_Place = COURSE_PLACE, Max_Students_Number = MAX_STD_NUM }); } ViewBag.Empty = false; ViewBag.Courses = COURSE_LIST; return(View("User")); } else { ViewBag.Empty = true; return(View("User")); } } catch (Exception e) { ViewBag.Empty = true; return(View("User")); } } else { ViewBag.isRight = false; return(View("Login")); } } } catch (Exception e) { ViewBag.Message = false; return(View("Login")); } }