public IHttpActionResult DeleteGuestDetails(string username) { string SqlCmd; try { SqlCmd = "spDeleteSpecificEmployee" + " '" + username + "'"; SqlConnection DbConnection = new SqlConnection(strcon); SqlCommand cmd = new SqlCommand(SqlCmd.ToString(), DbConnection); DbConnection.Open(); SqlDataReader rdr = cmd.ExecuteReader(); DbConnection.Close(); return(Ok()); } catch { return(BadRequest()); } }
public IHttpActionResult UpdateGuestFormCode([FromBody] FormData request) { string SqlCmd; try { SqlCmd = "spUpdateGuestselectedFormData" + " '" + request.FormName + "','" + request.UserName + "','" + HttpUtility.HtmlEncode(request.GuestFormData) + "'"; SqlConnection DbConnection = new SqlConnection(strcon); SqlCommand cmd = new SqlCommand(SqlCmd.ToString(), DbConnection); DbConnection.Open(); SqlDataReader rdr = cmd.ExecuteReader(); DbConnection.Close(); return(Ok()); } catch { return(BadRequest()); } }
public IHttpActionResult UpdateGuestDetails([FromBody] GuestInfo request) { string SqlCmd; try { SqlCmd = "spUpdateEmployeeDetails" + " '" + request.UserName + "','" + request.UserFirstName + "','" + request.USerLastName + "','" + request.UserPassword + "','" + request.UserMobileNo + "','" + request.UserDBO + "','" + request.UserEmailAddress + "','" + request.UserGender + "','" + request.UserAddress + "','" + request.ID + "'"; SqlConnection DbConnection = new SqlConnection(strcon); SqlCommand cmd = new SqlCommand(SqlCmd.ToString(), DbConnection); DbConnection.Open(); SqlDataReader rdr = cmd.ExecuteReader(); DbConnection.Close(); return(Ok()); } catch { return(BadRequest()); } }