public int createFeedback(SupervisorFeedback sf) // Insert. { SqlConnection conn = null; int toReturn = 0; try { conn = new SqlConnection(); conn.ConnectionString = ConfigurationManager.ConnectionStrings["DBConnectionString"].ConnectionString; conn.Open(); SqlCommand comm = new SqlCommand(); comm.Connection = conn; comm.CommandText = "insert into [SupervisorFeedback] " + "(title, feedback, userTo, userFrom, dateSubmitted)" + "values(@title, @feedback, @userTo, @userFrom, @dateSubmitted)"; comm.Parameters.AddWithValue("@title", sf.title); comm.Parameters.AddWithValue("@feedback", sf.feedback); comm.Parameters.AddWithValue("@userTo", sf.userTo.getUserID()); comm.Parameters.AddWithValue("@userFrom", sf.userFrom.getUserID()); comm.Parameters.AddWithValue("@dateSubmitted", sf.dateSubmitted); toReturn = comm.ExecuteNonQuery(); } catch (SqlException ex) { throw ex; } finally { conn.Close(); } return(toReturn); }
protected void cfmSubmit_Click(object sender, EventArgs e) { //to do validations Page.Validate("ValidateForm"); if (!Page.IsValid) { ScriptManager.RegisterStartupScript(this, this.GetType(), "Pop", "showDiv();", true); } else { if (txtFeedback.Text.Equals("") || CKEditorControl2.Text.Equals("")) { lblErrorMsg.Text = "Please enter your title or feedback."; lblErrorMsg.Visible = true; } else { SupervisorFeedbackDAO sfDAO = new SupervisorFeedbackDAO(); UserDAO userDAO = new UserDAO(); User currentUser = (User)Session["currentUser"]; User userTo = userDAO.getUserByID((String)Request.QueryString["id"]); SupervisorFeedback sf = new SupervisorFeedback(); sf.title = txtFeedback.Text; sf.feedback = CKEditorControl2.Text; sf.userFrom = currentUser; sf.userTo = userTo; sf.dateSubmitted = DateTime.Now; sfDAO.createFeedback(sf); Response.Redirect("progressReports.aspx?id=" + userTo.getUserID()); } } }
public List <SupervisorFeedback> getAllUserFeedback(string userID) { SqlConnection conn = new SqlConnection(); List <SupervisorFeedback> toReturn = new List <SupervisorFeedback>(); UserDAO userDAO = new UserDAO(); try { conn = new SqlConnection(); string connstr = ConfigurationManager.ConnectionStrings["DBConnectionString"].ToString(); conn.ConnectionString = connstr; conn.Open(); SqlCommand comm = new SqlCommand(); comm.Connection = conn; comm.CommandText = "select * from [SupervisorFeedback] where userTo=@userTo order by dateSubmitted desc"; comm.Parameters.AddWithValue("@userTo", userID); SqlDataReader dr = comm.ExecuteReader(); while (dr.Read()) { SupervisorFeedback sf = new SupervisorFeedback(); sf.feedbackID = (int)dr["feedbackID"]; sf.title = (string)dr["title"]; sf.feedback = (string)dr["feedback"]; sf.userTo = userDAO.getUserByID((string)dr["userTo"]); sf.userFrom = userDAO.getUserByID((string)dr["userFrom"]); sf.dateSubmitted = (DateTime)dr["dateSubmitted"]; toReturn.Add(sf); } dr.Close(); } catch (SqlException ex) { throw ex; } finally { conn.Close(); } return(toReturn); }