protected void Page_Load(object sender, EventArgs e)
{
if (Session["LoggedIn"] != null && Session["Role"] != null && Session["AuthToken"] != null && Request.Cookies["AuthToken"] != null)
{
if (!Session["AuthToken"].ToString().Equals(Request.Cookies["AuthToken"].Value))
{
Session.Clear();
Session.Abandon();
Session.RemoveAll();
Response.Redirect("Staff_Login.aspx");
if (Request.Cookies["ASP.NET_SessionId"] != null)
{
Response.Cookies["ASP.NET_SessionId"].Value = string.Empty;
Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20);
}
if (Request.Cookies["AuthToken"] != null)
{
Response.Cookies["AuthToken"].Value = string.Empty;
Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20);
}
}
else
{
if (Session["Role"].ToString() == "Staff")
{
// on page load codes here
if (!String.IsNullOrEmpty(Request.QueryString["id"]))
{
DBServiceReference.Service1Client client = new DBServiceReference.Service1Client();
var review = client.GetReviewById(Convert.ToInt32(Request.QueryString["id"])); // retrieves the selected review to display
// checks if the review has already been dealt with
if (review.Status.Trim() == "Approved" || review.Status.Trim() == "Rejected")
{
approve_btn.Visible = false;
disapprove_btn.Visible = false;
}
review_lb.Text = review_lb.Text + review.Review_Id.ToString();
status_lb.Text = review.Status;
// adds anchor tags/hyperlinks to the following text
gem_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Gem_Listing.aspx?gemId=" + review.Gem_Id + "&gemT=" + review.Gem_Title + "'>" + review.Gem_Title + "</a>"; // now is id, will need to retrieve name with it next time. also want to make it clickable, link to gem page.
author_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Staff_Account_Details.aspx?email=" + review.Author + "'>" + review.Author + "</a>";
rating_lb.Text = review.Rating.ToString();
description_lb.Text = review.Description;
}
else
{
// if there is no review selected, send back to reviews table.
Response.Redirect("Staff_Reviews_Table.aspx");
}
}
else
{
Session.Clear();
Session.Abandon();
Session.RemoveAll();
Response.Redirect("Staff_Login.aspx");
if (Request.Cookies["ASP.NET_SessionId"] != null)
{
Response.Cookies["ASP.NET_SessionId"].Value = string.Empty;
Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20);
}
if (Request.Cookies["AuthToken"] != null)
{
Response.Cookies["AuthToken"].Value = string.Empty;
Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20);
}
}
}
}
else
{
Session.Clear();
Session.Abandon();
Session.RemoveAll();
Response.Redirect("Staff_Login.aspx");
if (Request.Cookies["ASP.NET_SessionId"] != null)
{
Response.Cookies["ASP.NET_SessionId"].Value = string.Empty;
Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20);
}
if (Request.Cookies["AuthToken"] != null)
{
Response.Cookies["AuthToken"].Value = string.Empty;
Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20);
}
}
}
protected void Page_Load(object sender, EventArgs e)
{
if (Session["LoggedIn"] != null && Session["Role"] != null && Session["AuthToken"] != null && Request.Cookies["AuthToken"] != null)
{
if (!Session["AuthToken"].ToString().Equals(Request.Cookies["AuthToken"].Value))
{
Session.Clear();
Session.Abandon();
Session.RemoveAll();
Response.Redirect("Staff_Login.aspx");
if (Request.Cookies["ASP.NET_SessionId"] != null)
{
Response.Cookies["ASP.NET_SessionId"].Value = string.Empty;
Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20);
}
if (Request.Cookies["AuthToken"] != null)
{
Response.Cookies["AuthToken"].Value = string.Empty;
Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20);
}
}
else
{
if (Session["Role"].ToString() == "Staff")
{
// on page load codes here
if (!String.IsNullOrEmpty(Request.QueryString["id"]))
{
DBServiceReference.Service1Client client = new DBServiceReference.Service1Client();
var report = client.GetReportById(Convert.ToInt32(Request.QueryString["id"]));
if (report.Type.Trim() == "gem")
{
var gem = client.GetGemById(Convert.ToInt32(report.Post));
System.Diagnostics.Debug.WriteLine("post" + report.Post);
var id = report.Post;
var title = gem.Title;
System.Diagnostics.Debug.WriteLine("id" + id);
System.Diagnostics.Debug.WriteLine("title" + title);
report_lb.Text = report_lb.Text + report.Report_Id;
status_lb.Text = report.Status;
date_lb.Text = report.Date_reported.ToString("dd/MM/yyyy");
// adds anchor tags/hyperlinks to the following text
reporter_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Staff_Account_Details.aspx?email=" + report.Reported_by + "'>" + report.Reported_by + "</a>"; // links to account details page of reporter
type_lb.Text = report.Type;
reported_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Gem_Listing.aspx?gemId=" + id + "&gemT=" + title + "'>" + title + "</a>"; // links to reported gem/review
reason_lb.Text = report.Reason;
remarks_lb.Text = report.Remarks;
}
else
{
var review = client.GetReviewById(Convert.ToInt32(report.Post));
var id = Convert.ToInt32(review.Gem_Id);
var title = review.Gem_Title;
report_lb.Text = report_lb.Text + report.Report_Id;
status_lb.Text = report.Status;
date_lb.Text = report.Date_reported.ToString("dd/MM/yyyy");
// adds anchor tags/hyperlinks to the following text
reporter_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Staff_Account_Details.aspx?email=" + report.Reported_by + "'>" + report.Reported_by + "</a>"; // links to account details page of reporter
type_lb.Text = report.Type;
reported_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Gem_Listing.aspx?gemId=" + id + "&gemT=" + title + "'>" + title + "</a>"; // links to reported gem/review
reason_lb.Text = report.Reason;
remarks_lb.Text = report.Remarks;
}
// checks if the review has already been dealt
if (report.Status.Trim() == "Resolved")
{
resolve_btn.Visible = false;
}
}
else
{
// if there is no report selected, send back to reports table.
Response.Redirect("Staff_Reports_Table.aspx");
}
}
else
{
Session.Clear();
Session.Abandon();
Session.RemoveAll();
Response.Redirect("Staff_Login.aspx");
if (Request.Cookies["ASP.NET_SessionId"] != null)
{
Response.Cookies["ASP.NET_SessionId"].Value = string.Empty;
Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20);
}
if (Request.Cookies["AuthToken"] != null)
{
Response.Cookies["AuthToken"].Value = string.Empty;
Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20);
}
}
}
}
else
{
Session.Clear();
Session.Abandon();
Session.RemoveAll();
Response.Redirect("Staff_Login.aspx");
if (Request.Cookies["ASP.NET_SessionId"] != null)
{
Response.Cookies["ASP.NET_SessionId"].Value = string.Empty;
Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20);
}
if (Request.Cookies["AuthToken"] != null)
{
Response.Cookies["AuthToken"].Value = string.Empty;
Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20);
}
}
}