public string[] createStaffWorkData(staffWorkData WorkData) { string[] returnValue = new string[2]; returnValue[0] = "0"; returnValue[1] = ""; DataBase Base = new DataBase(); List<string> CreateFileName = this.getStaffDataName(HttpContext.Current.User.Identity.Name); using (SqlConnection Sqlconn = new SqlConnection(Base.GetConnString())) { try { Sqlconn.Open(); string sql = "INSERT INTO StaffWorkRecordData (StaffID, WorkItem, WorkDate, WorkRecord, WorkRemark, CreateFileBy, UpFileBy, UpFileDate) " + "VALUES (@StaffID ,@WorkItem, @WorkDate, @WorkRecord, @WorkRemark, @CreateFileBy, @UpFileBy, (getDate()))"; SqlCommand cmd = new SqlCommand(sql, Sqlconn); cmd.Parameters.Add("@StaffID", SqlDbType.Int).Value = Chk.CheckStringtoIntFunction(WorkData.staffID); cmd.Parameters.Add("@WorkItem", SqlDbType.TinyInt).Value = Chk.CheckStringtoIntFunction(WorkData.Type); cmd.Parameters.Add("@WorkDate", SqlDbType.Date).Value = Chk.CheckStringtoDateFunction(WorkData.RecordDate); cmd.Parameters.Add("@WorkRecord", SqlDbType.NVarChar).Value = Chk.CheckStringFunction(WorkData.Record); cmd.Parameters.Add("@WorkRemark", SqlDbType.NVarChar).Value = Chk.CheckStringFunction(WorkData.RecordRemark); cmd.Parameters.Add("@CreateFileBy", SqlDbType.Int).Value = Chk.CheckStringtoIntFunction(CreateFileName[0]); cmd.Parameters.Add("@UpFileBy", SqlDbType.Int).Value = Chk.CheckStringtoIntFunction(CreateFileName[0]); returnValue[0] = cmd.ExecuteNonQuery().ToString(); Sqlconn.Close(); } catch (Exception e) { returnValue[0] = "-1"; returnValue[1] = e.Message; } } return returnValue; }
public string[] createStaffWorkData(staffWorkData WorkData) { StaffDataBase sDB = new StaffDataBase(); sDB.personnelFunction(); if (int.Parse(sDB._StaffhaveRoles[2]) == 1) { return sDB.createStaffWorkData(WorkData); } else { return new string[2] { _noRole, _errorMsg }; } }
private List<staffWorkData> GetStaffWorkData(string staffID) { List<staffWorkData> returnValue = new List<staffWorkData>(); DataBase Base = new DataBase(); using (SqlConnection Sqlconn = new SqlConnection(Base.GetConnString())) { try { Sqlconn.Open(); string sql = "SELECT * FROM StaffWorkRecordData WHERE isDeleted=0 AND staffID=@staffID ORDER BY WorkDate DESC"; SqlCommand cmd = new SqlCommand(sql, Sqlconn); cmd.Parameters.Add("@staffID", SqlDbType.Int).Value = Chk.CheckStringtoIntFunction(staffID); SqlDataReader dr = cmd.ExecuteReader(); while (dr.Read()) { staffWorkData addValue = new staffWorkData(); addValue.ID = dr["WorkID"].ToString(); addValue.Type = dr["WorkItem"].ToString(); addValue.RecordDate = DateTime.Parse(dr["WorkDate"].ToString()).ToString("yyyy-MM-dd"); addValue.Record = dr["WorkRecord"].ToString(); addValue.RecordRemark = dr["WorkRemark"].ToString(); returnValue.Add(addValue); } dr.Close(); Sqlconn.Close(); } catch (Exception e) { staffWorkData addValue = new staffWorkData(); addValue.ID = "-1"; addValue.Record = e.Message; returnValue.Add(addValue); } } return returnValue; }