public void UpdateProfileUser(ADMIN user)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@TenNhanVien", SqlDbType.NVarChar, 100),
new SqlParameter("@GioiTinh", SqlDbType.NVarChar, 5),
new SqlParameter("@NgaySinh", SqlDbType.Date),
new SqlParameter("@DiaChi", SqlDbType.NVarChar, 200),
new SqlParameter("@Email", SqlDbType.NVarChar, 100),
new SqlParameter("@MaLoaiNhanVien", SqlDbType.NVarChar, 20),
new SqlParameter("@HinhAnh", SqlDbType.NVarChar, 50),
new SqlParameter("@SodienThoai", SqlDbType.NVarChar, 14),
new SqlParameter("@MaNhanVien", SqlDbType.NVarChar, 20),
};
parm[0].Value = user.tennhanvien;
parm[1].Value = user.gioitinh;
parm[2].Value = DateTime.Parse(user.ngaysinh.ToString());
parm[3].Value = user.diachi;
parm[4].Value = user.email;
parm[5].Value = user.maloainhanvien;
parm[6].Value = user.hinhanh;
parm[7].Value = user.sodienthoai;
parm[8].Value = user.manhanvien;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Update_Profile_User", parm);
}
public void UpdateAmountInCartDetails(List <Cart_DTO> listInCarts)
{
SqlParameter [] parm = new SqlParameter[]
{
new SqlParameter("@MaChiTietGioHang", SqlDbType.NVarChar, 100),
new SqlParameter("@SoLuong", SqlDbType.NVarChar, 200),
};
foreach (var item in listInCarts)
{
parm[0].Value = item.MaChiTietGioHang;
parm[1].Value = item.SoLuong;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Update_Amount_In_Cart_Details", parm);
}
//string[] a = listInCarts as string[];
//if (a != null)
//{
// string[] sRes = a.OfType<string>().ToArray();
//}
//foreach (var item in listInCarts)
//{
// parm[0].Value = cart_DTO.MaGioHang;
// parm[1].Value = cart_DTO.MaSanPham;
// parm[2].Value = cart_DTO.SoLuong;
// DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Update_Amount_In_Cart_Details", parm);
//}
}
public int Active(string guild)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter(parm_VerificationCode, SqlDbType.NVarChar, 40),
};
parm[0].Value = guild;
return(DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "activeacc", parm));
}
public void xoaSp(string ma)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@MaSanPham", SqlDbType.NVarChar, 50),
};
parm[0].Value = ma;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "deleteProduct", parm);
}
public void AddToCart(string maKhacHang, string maSanPham, int donGia, int soLuong)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@MaKhachHang", SqlDbType.NVarChar, 50),
new SqlParameter("@MaSanPham", SqlDbType.NVarChar, 50),
new SqlParameter("@DonGia", SqlDbType.Int),
new SqlParameter("@SoLuong", SqlDbType.Int)
};
parm[0].Value = maKhacHang;
parm[1].Value = maSanPham;
parm[2].Value = donGia;
parm[3].Value = soLuong;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Add_To_Cart", parm);
}
public void fillinfo(string tk, string mk, KHACH_HANG kHACH_HANG)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter(parm_TaiKhoan, SqlDbType.NVarChar, 50),
new SqlParameter(parm_MatKhau, SqlDbType.NVarChar, 50),
new SqlParameter(parm_HoVaten, SqlDbType.NVarChar, 50),
new SqlParameter(parm_DiaChi, SqlDbType.NVarChar, 50),
new SqlParameter(parm_SoDienThoai, SqlDbType.NVarChar, 50),
new SqlParameter(parm_GioiTinh, SqlDbType.Bit),
new SqlParameter(parm_NgaySinh, SqlDbType.DateTime, 50),
new SqlParameter(parm_AnhDaiDien, SqlDbType.NVarChar, 200),
new SqlParameter(parm_IdFaceBook, SqlDbType.NVarChar, 50),
};
if (tk == null && mk == null)
{
parm[0].Value = "đay là giữ chỗ cho khỏi null :) b làm cho nó có thể truyền vào null đi";
parm[1].Value = "hold";
}
else
{
parm[0].Value = tk;
parm[1].Value = mk;
}
parm[2].Value = kHACH_HANG.tenkhachhang;
parm[3].Value = kHACH_HANG.adress;
parm[4].Value = kHACH_HANG.sodienthoai;
parm[5].Value = kHACH_HANG.Sex;
parm[6].Value = kHACH_HANG.dateofbirth;
parm[7].Value = kHACH_HANG.anhdaidien;
if (kHACH_HANG.idFacebook == null)
{
parm[8].Value = "hold";
}
if (kHACH_HANG.makhachhang != null)
{
parm[8].Value = "hold";
}
else
{
parm[8].Value = kHACH_HANG.idFacebook;
}
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "fillinfo", parm);
}
public void addPrice(Price_DTO pr)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@maSanPham", SqlDbType.NVarChar, 50),
new SqlParameter("@giaBan", SqlDbType.Int),
new SqlParameter("@ngayApDung", SqlDbType.DateTime),
new SqlParameter("@ngayKetThuc", SqlDbType.DateTime),
};
parm[0].Value = pr.maSanPham;
parm[1].Value = pr.gia;
parm[2].Value = DateTime.Parse(pr.ngayBatDau.ToString());
parm[3].Value = DateTime.Parse(pr.ngayKetThuc.ToString());
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "addPrice", parm);
}
public void add_Discount(promotion_dto getJsonResults)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@maSanPham", SqlDbType.NVarChar, 50),
new SqlParameter("@phantram", SqlDbType.Int),
new SqlParameter("@ngayApDung", SqlDbType.DateTime),
new SqlParameter("@ngayKetThuc", SqlDbType.DateTime),
};
parm[0].Value = getJsonResults.maSanPham;
parm[1].Value = getJsonResults.percent;
parm[2].Value = DateTime.Parse(getJsonResults.batDau.ToString());
parm[3].Value = DateTime.Parse(getJsonResults.ketThuc.ToString());
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "addDiscount", parm);
}
public void edit(SAN_PHAM info)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@masanpham", SqlDbType.NVarChar, 10),
new SqlParameter("@tensanpham", SqlDbType.NVarChar, 50),
new SqlParameter("@hinhanh", SqlDbType.NVarChar, 50),
new SqlParameter("@donvitinh", SqlDbType.NVarChar, 10),
new SqlParameter("@mota", SqlDbType.NVarChar, 500),
new SqlParameter("@giamoi", SqlDbType.Int),
};
parm[0].Value = info.MaSanPham;
parm[1].Value = info.tensanpham;
parm[0].Value = info.Hinhanh;
parm[1].Value = info.DonViTinh;
parm[0].Value = info.MoTa;
parm[1].Value = info.Giaban;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "UpdateProduct", parm);
}
public string placeOrder(IList <Cart_DTO> lists, string diaChi, string sdt, string maKhachHang, string tongtien, string dongia)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@MaSanPham", SqlDbType.NVarChar, 50),
new SqlParameter("@SoLuong", SqlDbType.Int),
new SqlParameter("@DonGia", SqlDbType.Int),
new SqlParameter("@TongTien", SqlDbType.Int),
new SqlParameter("@MaDonHang", SqlDbType.NVarChar, 100),
};
SqlParameter[] parmbill = new SqlParameter[]
{
new SqlParameter("@MaKhachHang", SqlDbType.NVarChar, 100),
new SqlParameter("@DiaChi", SqlDbType.NVarChar, 50),
new SqlParameter("@SoDienThoai", SqlDbType.NVarChar, 50),
new SqlParameter("@TongTien", SqlDbType.NVarChar, 50),
//new SqlParameter("@MaDonHang",SqlDbType.NVarChar,100),
};
parmbill[0].Value = maKhachHang;
parmbill[1].Value = diaChi;
parmbill[2].Value = sdt;
parmbill[3].Value = tongtien;
//parmbill[4].Value = "";
var value = DataAccessHelper.parnWithValue("@MaDonHang", DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Add_To_Bill", parmbill);
foreach (var item in lists)
{
parm[0].Value = item.MaSanPham;
parm[1].Value = item.SoLuong;
parm[2].Value = dongia;
parm[3].Value = tongtien;
parm[4].Value = value;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Add_To_Bill_Detail", parm);
}
SqlParameter[] parmDeleteCart = new SqlParameter[]
{
new SqlParameter("@MaKhachHang", SqlDbType.NVarChar, 200),
};
parmDeleteCart[0].Value = maKhachHang;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Delete_To_Cart", parmDeleteCart);
return(value.ToString());
}
public void postComent(string masp, string mkh, string binhluan, string hinhanh, float stars
)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@MaFeedBack", SqlDbType.NVarChar, 50),
new SqlParameter("@MaSanPham", SqlDbType.NVarChar, 50),
new SqlParameter("@MaKhachHang", SqlDbType.NVarChar, 50),
new SqlParameter("@BinhLuan", SqlDbType.NVarChar, 200),
new SqlParameter("@HinhAnh", SqlDbType.NVarChar, 100),
new SqlParameter("@Stars", SqlDbType.Int),
};
parm[0].Value = "" ?? DBNull.Value.ToString();
parm[1].Value = masp;
parm[2].Value = mkh;
parm[3].Value = binhluan;
parm[4].Value = hinhanh ?? DBNull.Value.ToString();
parm[5].Value = stars;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "PostComment", parm);
}
public int register(KHACH_HANG kHACH_HANG, string code)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter(parm_MaKhachHang, SqlDbType.NVarChar, 50),
new SqlParameter(parm_TaiKhoan, SqlDbType.NVarChar, 50),
new SqlParameter(parm_MatKhau, SqlDbType.NVarChar, 50),
new SqlParameter(parm_NgayTao, SqlDbType.DateTime),
new SqlParameter(parm_Email, SqlDbType.NVarChar, 100),
new SqlParameter(parm_Active, SqlDbType.Bit),
new SqlParameter(parm_VerificationCode, SqlDbType.NVarChar, 40),
};
parm[0].Value = kHACH_HANG.taikhoan + "mkh";
parm[1].Value = kHACH_HANG.taikhoan;
parm[2].Value = kHACH_HANG.matkhau;
parm[3].Value = DateTime.Now.ToLongDateString();
parm[4].Value = kHACH_HANG.email;
parm[5].Value = false;
parm[6].Value = code;
return(DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "register", parm));
}
public void themSp(SAN_PHAM sp)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@MaLoaiSanPham", SqlDbType.NVarChar, 50),
new SqlParameter("@TenSanPham", SqlDbType.NVarChar, 50),
new SqlParameter("@SoluongNhap", SqlDbType.Int),
new SqlParameter("@HinhAnh", SqlDbType.NVarChar, 50),
new SqlParameter("@DonViTinh", SqlDbType.NVarChar, 50),
new SqlParameter("@MoTa", SqlDbType.NVarChar, 500),
new SqlParameter("@GiaBan", SqlDbType.Int),
};
parm[0].Value = sp.MaLoaiSanPham;
parm[1].Value = sp.tensanpham;
parm[2].Value = sp.SoLuongnhap;
parm[3].Value = sp.Hinhanh;
parm[4].Value = sp.DonViTinh;
parm[5].Value = sp.MoTa;
parm[6].Value = sp.Giaban;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Insert_Into_Product", parm);
}
public int themlsp(LOAI_SAN_PHAM lsp)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@MaLoaiSanPhams", SqlDbType.NVarChar, 20),
new SqlParameter("@TenLoaiSanPham", SqlDbType.NVarChar, 100),
new SqlParameter("@MoTa", SqlDbType.NVarChar, 350),
};
parm[0].Value = lsp.MaLoaiSanPham ?? DBNull.Value.ToString();
parm[1].Value = lsp.tenloaisanpham;
parm[2].Value = lsp.MoTa;
try
{
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Insert_Auto_Product_Type", parm);
return(1);
}
catch
{
return(0);
}
}
public object LoginGoogle(KHACH_HANG kh)
{
if (kh.tenkhachhang != null)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@IDGoogle", SqlDbType.NVarChar, 100),
new SqlParameter("@TenKhachHang", SqlDbType.NVarChar, 100),
new SqlParameter("@HinhAnh", SqlDbType.NVarChar, 200),
new SqlParameter("@mail", SqlDbType.NVarChar, 200),
};
parm[0].Value = kh.makhachhang;
parm[1].Value = kh.TenKhachHang;
parm[2].Value = kh.AnhDaiDien;;
parm[3].Value = kh.email;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "login_google", parm);
}
string cmdtext = string.Format(@"select * from KHACH_HANG where MaKhachHang='{0}' or Email='{1}'", kh.makhachhang, kh.email);
return(list(cmdtext));
}
public IList <KHACH_HANG> LoginFaceBook(KHACH_HANG kHACH_HANG)
{
if (kHACH_HANG.TenKhachHang != null)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@IDFaceBook", SqlDbType.NVarChar, 100),
new SqlParameter("@TenKhachHang", SqlDbType.NVarChar, 100),
new SqlParameter("@HinhAnh", SqlDbType.NVarChar, 200),
};
parm[0].Value = kHACH_HANG.idFacebook;
parm[1].Value = kHACH_HANG.TenKhachHang;
parm[2].Value = kHACH_HANG.AnhDaiDien;;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Login_FaceBook", parm);
}
string cmdtext = string.Format(@"Select * From dbo.KHACH_HANG
Where IDFaceBook ='{0}'
", kHACH_HANG.idFacebook);
return(list(cmdtext));
}
public void editProFile(ADMIN nv)
{
SqlParameter[] parm = new SqlParameter[]
{
new SqlParameter("@maNhanVien", SqlDbType.NVarChar, 20),
new SqlParameter("@tenNhanVien", SqlDbType.NVarChar, 100),
new SqlParameter("@gioiTinh", SqlDbType.NVarChar, 5),
new SqlParameter("@ngaySinh", SqlDbType.Date),
new SqlParameter("@diaChi", SqlDbType.NVarChar, 200),
new SqlParameter("@SodienThoai", SqlDbType.NVarChar, 14),
new SqlParameter("@Email", SqlDbType.NVarChar, 50),
new SqlParameter("@HinhAnh", SqlDbType.NVarChar, 50),
};
parm[0].Value = nv.manhanvien;
parm[1].Value = nv.tennhanvien;
parm[2].Value = nv.gioitinh;
parm[3].Value = DateTime.Parse(nv.ngaysinh.ToString());
parm[4].Value = nv.diachi;
parm[6].Value = nv.email;
parm[7].Value = nv.hinhanh;
parm[5].Value = nv.sodienthoai;
DataAccessHelper.ExecuteNonQuery(DataAccessHelper.ConnectionString, CommandType.StoredProcedure, "Edit_Profile", parm);
}
