public async Task <ActionResult> SubmitGBEntry(SubmitGBEntryModel model, string returnUrl) { if (!ModelState.IsValid) { return(Redirect("www.google.com")); return(LocalRedirect("/~")); } string connstring = string.Format("Server=localhost; database=weblab7; UID=root; password=root1234"); var connection = new MySqlConnection(connstring); connection.Open(); string query = string.Format("INSERT INTO guestbook(author_email, title, description, posted_on) VALUES('{0}', '{1}', '{2}', '{3}')", HomeController.username, model.Title, model.Text, DateTime.Now.ToString("yyyy-MM-dd")); var cmd = new MySqlCommand(query, connection); cmd.ExecuteNonQuery(); connection.Close(); // Go back to the index page (basically the login page) // If we redirect to /Home/Login, the username won't be kept return(LocalRedirect("~/")); }
public async Task <ActionResult> Delete(SubmitGBEntryModel model) { string connstring = string.Format("Server=localhost; database=weblab7; UID=root; password=root1234"); var connection = new MySqlConnection(connstring); connection.Open(); string query = "DELETE FROM guestbook WHERE id = " + model.Id; var cmd = new MySqlCommand(query, connection); cmd.ExecuteNonQuery(); connection.Close(); return(LocalRedirect("~/")); }
public async Task <ActionResult> Update(SubmitGBEntryModel model) { string connstring = string.Format("Server=localhost; database=weblab7; UID=root; password=root1234"); var connection = new MySqlConnection(connstring); connection.Open(); //model.Email = "ASDASD"; //model.Title = "DSADAS"; //model.Comment = "KMAKSDMAK"; model.Id = "3"; string query = "UPDATE guestbook SET author_email = '" + model.Email + "', title = '" + model.TitleUpd + "', description = '" + model.Comment + "' WHERE id = " + model.Id; var cmd = new MySqlCommand(query, connection); cmd.ExecuteNonQuery(); connection.Close(); return(LocalRedirect("~/")); }