public string[] setStationeryData1(SearchStationeryResult stationeryData) { string[] returnValue = new string[2]; returnValue[0] = "0"; returnValue[1] = "0"; DataBase Base = new DataBase(); using (SqlConnection Sqlconn = new SqlConnection(Base.GetConnString())) { try { StaffDataBase sDB = new StaffDataBase(); List<string> CreateFileName = sDB.getStaffDataName(HttpContext.Current.User.Identity.Name); Sqlconn.Open(); string sql = "UPDATE PropertyDatabase SET PropertyName=@executionName, ItemUnit=@executionUnit, SafetyStock=@executionQuantity, " + "Remark=@executionRemark, UpFileBy=@UpFileBy, UpFileDate=(getDate()) WHERE ID=@sID AND isDeleted=0"; SqlCommand cmd = new SqlCommand(sql, Sqlconn); cmd.Parameters.Add("@sID", SqlDbType.BigInt).Value = stationeryData.sID; cmd.Parameters.Add("@executionName", SqlDbType.NVarChar).Value = Chk.CheckStringFunction(stationeryData.executionName); cmd.Parameters.Add("@executionUnit", SqlDbType.NVarChar).Value = Chk.CheckStringFunction(stationeryData.executionUnit); cmd.Parameters.Add("@executionQuantity", SqlDbType.Int).Value = Chk.CheckStringtoIntFunction(stationeryData.executionQuantity); cmd.Parameters.Add("@executionRemark", SqlDbType.NVarChar).Value = Chk.CheckStringFunction(stationeryData.executionRemark); cmd.Parameters.Add("@UpFileBy", SqlDbType.Int).Value = Chk.CheckStringtoIntFunction(CreateFileName[0]); returnValue[0] = cmd.ExecuteNonQuery().ToString(); Sqlconn.Close(); } catch (Exception e) { returnValue[0] = "-1"; returnValue[1] = e.Message.ToString(); } } return returnValue; }
public string[] setStationeryData1(SearchStationeryResult stationeryData) { OtherDataBase sDB = new OtherDataBase(); if (int.Parse(sDB._StaffhaveRoles[1]) == 1) { return sDB.setStationeryData1(stationeryData); } else { return new string[2] { _noRole, _errorMsg }; } }