public async Task <ActionResult> SubmitGBEntry(SubmitGBEntryModel model, string returnUrl)
{
if (!ModelState.IsValid)
{
return(Redirect("www.google.com"));
return(LocalRedirect("/~"));
}
string connstring = string.Format("Server=localhost; database=weblab7; UID=root; password=root1234");
var connection = new MySqlConnection(connstring);
connection.Open();
string query = string.Format("INSERT INTO guestbook(author_email, title, description, posted_on) VALUES('{0}', '{1}', '{2}', '{3}')", HomeController.username, model.Title, model.Text, DateTime.Now.ToString("yyyy-MM-dd"));
var cmd = new MySqlCommand(query, connection);
cmd.ExecuteNonQuery();
connection.Close();
// Go back to the index page (basically the login page)
// If we redirect to /Home/Login, the username won't be kept
return(LocalRedirect("~/"));
}
public async Task <ActionResult> Delete(SubmitGBEntryModel model)
{
string connstring = string.Format("Server=localhost; database=weblab7; UID=root; password=root1234");
var connection = new MySqlConnection(connstring);
connection.Open();
string query = "DELETE FROM guestbook WHERE id = " + model.Id;
var cmd = new MySqlCommand(query, connection);
cmd.ExecuteNonQuery();
connection.Close();
return(LocalRedirect("~/"));
}
public async Task <ActionResult> Update(SubmitGBEntryModel model)
{
string connstring = string.Format("Server=localhost; database=weblab7; UID=root; password=root1234");
var connection = new MySqlConnection(connstring);
connection.Open();
//model.Email = "ASDASD";
//model.Title = "DSADAS";
//model.Comment = "KMAKSDMAK";
model.Id = "3";
string query = "UPDATE guestbook SET author_email = '" + model.Email + "', title = '" + model.TitleUpd + "', description = '" + model.Comment + "' WHERE id = " + model.Id;
var cmd = new MySqlCommand(query, connection);
cmd.ExecuteNonQuery();
connection.Close();
return(LocalRedirect("~/"));
}
