private void ReadOrderData(string filterPrimkey, string connectionString, int rowIndex) { var queryString = "SELECT numcode, charcode, nominal, name, value FROM dbo.values_history inner join dbo.description on dbo.description.id = dbo.values_history.id WHERE dbo.values_history.primkey ='" + filterPrimkey + "' ;"; try { using (var connection = new SqlConnection(connectionString)) { var command = new SqlCommand(queryString, connection); connection.Open(); var reader = command.ExecuteReader(); while (reader.Read()) { WriteCurrency(reader, rowIndex); } reader.Close(); } } catch (Exception ex) { Log.Text = ex.Message; } }
public void GetScheduledAppointments() { var con = new SqlConnection("Data Source=CSDB;Initial Catalog=SEI_Ninja;Persist Security Info=True;UID=sei_timemachine;PWD=z5t9l3x0"); string sql = @"SELECT e.eventID, e.eventName, e.eventLocation, et.eventDate, et.eventDuration, u.user_first_name + ' ' + u.user_last_name AS name FROM [SEI_Ninja].[dbo].SCHEDULED_USERS su JOIN [SEI_Ninja].[dbo].EVENT_TIMES et ON (su.eventTimeID = et.eventTimeID) JOIN [SEI_TimeMachine2].[dbo].[USER] u ON (su.userID = u.user_id) JOIN [SEI_Ninja].[dbo].EVENT e ON (et.eventID = e.eventID) WHERE e.eventOwner = 'mgeary' ORDER BY e.eventID"; using (var command = new SqlCommand(sql, con)) { con.Open(); using (var reader = command.ExecuteReader()) { var list = new List<ScheduledAppointment>(); while (reader.Read()) list.Add(new ScheduledAppointment { eventID = reader.GetInt32(0), eventName = reader.GetString(1), eventLocation = reader.GetString(2), eventDate = reader.GetDateTime(3), eventDuration = (float)reader.GetDouble(4), eventUserName = reader.GetString(5) }); allAppointments = list.ToArray(); } } }
private void DataPortal_Fetch(CategoryCriteria criteria) { bool cancel = false; OnFetching(criteria, ref cancel); if (cancel) return; string commandText = String.Format("SELECT [CategoryId], [Name], [Descn] FROM [dbo].[Category] {0}", ADOHelper.BuildWhereStatement(criteria.StateBag)); using (var connection = new SqlConnection(ADOHelper.ConnectionString)) { connection.Open(); using (var command = new SqlCommand(commandText, connection)) { command.Parameters.AddRange(ADOHelper.SqlParameters(criteria.StateBag)); using(var reader = new SafeDataReader(command.ExecuteReader())) { if (reader.Read()) Map(reader); else throw new Exception(String.Format("The record was not found in 'dbo.Category' using the following criteria: {0}.", criteria)); } } } OnFetched(); }
public RootObjectOut GetMessageByUser(UserIn jm) { RootObjectOut output = new RootObjectOut(); String jsonString = ""; try { String strConnection = ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString; SqlConnection Connection = new SqlConnection(strConnection); String strSQL = string.Format("SELECT message FROM messages WHERE msgTo = '{0}' AND [msgID] = (SELECT MAX(msgID) FROM messages WHERE msgTo='{1}')", jm.user.ToString(),jm.user.ToString()); SqlCommand Command = new SqlCommand(strSQL, Connection); Connection.Open(); SqlDataReader Dr; Dr = Command.ExecuteReader(); if (Dr.HasRows) { if (Dr.Read()) { jsonString = Dr.GetValue(0).ToString(); } } Dr.Close(); Connection.Close(); } catch (Exception ex) { output.errorMessage = ex.Message; } finally { } JavaScriptSerializer ser = new JavaScriptSerializer(); output = ser.Deserialize<RootObjectOut>(jsonString); return output; }
public List<Model.Beneficios> Select() { List<Model.Beneficios> lstBeneficios = new List<Model.Beneficios>(); SqlConnection conexao = new SqlConnection(strCon); string sql = "Select * from Beneficios"; SqlCommand cmd = new SqlCommand(sql, conexao); conexao.Open(); try { SqlDataReader reader = cmd.ExecuteReader(CommandBehavior.CloseConnection); while (reader.Read()) { Model.Beneficios beneficios = new Model.Beneficios(); beneficios.id = Convert.ToInt32(reader["id"].ToString()); beneficios.descr = Convert.ToString(reader["descr"].ToString()); lstBeneficios.Add(beneficios); } } catch { Console.WriteLine("Deu erro na Seleção de Beneficios..."); } finally { conexao.Close(); } return lstBeneficios; }
public static void Main() { var connection = new SqlConnection(connectionString: "Server=(local); Database=Northwind; Integrated Security=true;"); connection.Open(); var command = new SqlCommand(cmdText: "select c.CategoryName, p.ProductName from Products p inner join Categories c on c.CategoryId = p.CategoryId;", connection: connection); var categoriesAndProducts = new Dictionary<string, List<string>>(); var reader = command.ExecuteReader(); while (reader.Read()) { var category = (string)reader["CategoryName"]; var product = (string)reader["ProductName"]; if(categoriesAndProducts.ContainsKey(category)) { categoriesAndProducts[category].Add(product); } else { categoriesAndProducts.Add(category, new List<string>()); } } connection.Close(); foreach (var kvp in categoriesAndProducts) { Console.WriteLine(new string(c: '=', count: 20) + "\n" + kvp.Key + "\n" + new string(c: '=', count: 20)); foreach (var product in kvp.Value) { Console.WriteLine("-- " + product); } } }
private static ICollection<string> FindProductBy(string partOfName) { var names = new List<string>(); string connectionString = "Data Source=.;Initial Catalog=Northwind;Integrated Security=SSPI;"; var dbCon = new SqlConnection(connectionString); dbCon.Open(); using (dbCon) { SqlCommand command = new SqlCommand( "SELECT p.ProductName FROM Products p WHERE p.ProductName LIKE @Search", dbCon); command.Parameters.AddWithValue("@Search", "%" + partOfName + "%"); SqlDataReader reader = command.ExecuteReader(); Console.WriteLine("\nProductNams that contains ({0}):\n", partOfName); using (reader) { string categoryName = string.Empty; string currentCategoryName = string.Empty; while (reader.Read()) { string productName = (string)reader["ProductName"]; names.Add(productName); } } } return names; }
static void Main(string[] args) { Console.Write("Enter some text to search for it in the Products: "); var searchedProduct = Console.ReadLine(); SqlConnection dbCon = new SqlConnection("Server=localhost; " + "Database=NORTHWND; Integrated Security=true"); dbCon.Open(); using (dbCon) { SqlCommand cmd = new SqlCommand( "SELECT ProductName FROM Products " + "WHERE CHARINDEX (@searchedProduct, ProductName)>0", dbCon); cmd.Parameters.AddWithValue("@searchedProduct", searchedProduct); SqlDataReader reader = cmd.ExecuteReader(); using (reader) { while (reader.Read()) { string productName = (string)reader["ProductName"]; Console.WriteLine(productName); } } } }
/// <summary> /// Return the song with a given id /// </summary> /// <param name="songId">The id of the song to get</param> /// <returns>The song with the given id, or null if no such movie exists</returns> public Song GetSong(int songId) { SqlCommand command = new SqlCommand("SELECT * FROM Song WHERE id =" + songId, connection); SqlDataReader reader = command.ExecuteReader(); if (reader.Read()) { string album = reader["album"].ToString(); reader.Close(); command.CommandText = "SELECT * FROM Files WHERE id =" + songId; reader = command.ExecuteReader(); reader.Read(); Song song = new Song() { Id = songId, Album = album, RentPrice = int.Parse(reader["rentPrice"].ToString()), BuyPrice = int.Parse(reader["buyPrice"].ToString()), Uri = reader["URI"].ToString(), Title = reader["title"].ToString(), Description = reader["description"].ToString(), Year = short.Parse(reader["year"].ToString()), CoverUri = reader["coverURI"].ToString(), ViewCount = int.Parse(reader["viewCount"].ToString()) }; reader.Close(); return song; } reader.Close(); return null; }
public static void getBook(int OrgID, ref string[] fields, ref int[] fieldNums, ref string[,] books) { int ObjID = 0; int counter = 0; SqlDataReader read; SqlCommand cmd = new SqlCommand(); string e4Conn = ConfigurationManager.ConnectionStrings["conn"].ConnectionString; SqlConnection conn = new SqlConnection(e4Conn); conn.Open(); cmd.Connection = conn; cmd.CommandText = "SELECT * FROM Objects WHERE OrgID = '" + OrgID + "' AND ObjName = 'Book'"; read = cmd.ExecuteReader(); if (read.HasRows) { read.Read(); try { ObjID = System.Convert.ToInt32(read["ObjID"]); read.Close(); cmd.CommandText = "Select * FROM Fields WHERE ObjID = '" + ObjID + "'"; read = cmd.ExecuteReader(); if (read.HasRows) { while (read.Read()) { fields[counter] = System.Convert.ToString(read["FieldName"]); fieldNums[counter] = System.Convert.ToInt32(read["FieldNumber"]); counter++; } read.Close(); cmd.CommandText = "SELECT * FROM Data WHERE ObjID = '" + ObjID + "'"; read = cmd.ExecuteReader(); if (read.HasRows) { counter = 0; while (read.Read()) { books[counter, 0] = System.Convert.ToString(read["Value00"]); books[counter, 1] = System.Convert.ToString(read["Value01"]); books[counter, 2] = System.Convert.ToString(read["Value02"]); books[counter, 3] = System.Convert.ToString(read["Value03"]); books[counter, 4] = System.Convert.ToString(read["Value04"]); books[counter, 5] = System.Convert.ToString(read["Value05"]); books[counter, 6] = System.Convert.ToString(read["Value06"]); books[counter, 7] = System.Convert.ToString(read["Value07"]); books[counter, 8] = System.Convert.ToString(read["Value08"]); books[counter, 9] = System.Convert.ToString(read["Value09"]); books[counter, 10] = System.Convert.ToString(read["Value10"]); counter++; } } } } catch (Exception ex) { } } }
private void button1_Click(object sender, EventArgs e) { listBox1.Items.Clear(); comboBox1.Items.Clear(); String strcon = "Data Source=VINOTH;Integrated Security=SSPI;Initial Catalog=Dafesty"; SqlConnection cn = new SqlConnection(strcon); SqlCommand cm = new SqlCommand(); cm.CommandText = "select movietitle from movies order by movietitle"; cm.Connection = cn; cn.Open(); SqlDataReader rd = cm.ExecuteReader(); int count = 0; while (rd.Read()) { listBox1.Items.Add(rd[0].ToString()); count++; } label3.Text = count.ToString() + " Row(s) Selected"; cm.CommandText = "select distinct Rating from Movies "; rd.Close(); rd = cm.ExecuteReader(); while(rd.Read()) comboBox1.Items.Add(rd[0]); rd.Close(); cn.Close(); }
public void mandarMensajeDeExito() { SqlCommand cmd = new SqlCommand("select * from THE_CVENGERS.COMPRA where COMPRA_ID = "+ idComp, Conexion.getConexion()); SqlDataReader rd = cmd.ExecuteReader(); rd.Read(); bool sw = bool.Parse(rd["COMPRA_FORMA_DE_PAGO"].ToString()); rd.Close(); float monto = 0f; foreach (int it in checkedListBox1.CheckedIndices) { monto += float.Parse(((ItemsDevolucion)checkedListBox1.Items[it]).getPrecio()); } String mens = "La devolucion se ha realizado con exito. El monto de $"+ monto.ToString(); if (!sw) mens += " sera retribuido en efectivo."; else { cmd.CommandText = "select THE_CVENGERS.tipoTarjetaCompra(" + idComp + ") 't'"; rd = cmd.ExecuteReader(); rd.Read(); String tipoT = rd["t"].ToString(); rd.Close(); cmd.CommandText = "select THE_CVENGERS.numeroTarjetaCompra(" + idComp + ") 'n'"; rd = cmd.ExecuteReader(); rd.Read(); String numT = rd["n"].ToString(); rd.Close(); mens += " sera retribuido a la tarjeta "+tipoT+" de numero "+numT; } MessageBox.Show(mens,"Información",MessageBoxButtons.OK); }
public static string[,] GetListChevaux(SqlConnection conn) { SqlCommand sql = new SqlCommand("select id, nom, description, emplacement, race, discipline, idusager from cheval "); sql.Connection = conn; conn.Open(); SqlDataReader sqlDR = sql.ExecuteReader(); int nombre = 0; while (sqlDR.Read()) { nombre++; } string[,] Tab = new string[nombre, 7]; sqlDR.Close(); if (nombre > 0) { SqlDataReader sqlDR2 = sql.ExecuteReader(); int cpt = 0; while (sqlDR2.Read()) { Tab[cpt, 0] = sqlDR2.GetInt32(0).ToString(); Tab[cpt, 1] = sqlDR2.GetString(1); Tab[cpt, 2] = sqlDR2.GetString(2); Tab[cpt, 3] = sqlDR2.GetString(3); Tab[cpt, 4] = sqlDR2.GetString(4); Tab[cpt, 5] = sqlDR2.GetString(5); Tab[cpt, 6] = sqlDR2.GetInt32(6).ToString(); cpt++; } sqlDR2.Close(); } conn.Close(); return Tab; }
/// <summary> /// Return the movie with a given id /// </summary> /// <param name="movieId">The id of the movie to get</param> /// <returns>The movie with the given id, or null if no such movie exists</returns> public Movie GetMovie(int movieId) { SqlCommand command = new SqlCommand("SELECT * FROM Movie WHERE id =" + movieId, connection); SqlDataReader reader = command.ExecuteReader(); if (reader.Read()) { reader.Close(); command.CommandText = "SELECT * FROM Files WHERE id =" + movieId; reader = command.ExecuteReader(); reader.Read(); Movie mov = new Movie() { Id = movieId, RentPrice = int.Parse(reader["rentPrice"].ToString()), BuyPrice = int.Parse(reader["buyPrice"].ToString()), Uri = reader["URI"].ToString(), Title = reader["title"].ToString(), Description = reader["description"].ToString(), Year = short.Parse(reader["year"].ToString()), CoverUri = reader["coverURI"].ToString(), ViewCount = int.Parse(reader["viewCount"].ToString()) }; reader.Close(); return mov; } reader.Close(); return null; }
/// <summary> /// весь процесс заполнения информации /// </summary> void BaseCreation() { using (SqlConnection con = new SqlConnection(App.GetConnectString())) { con.Open(); //Имя пользователя SqlCommand cmd = new SqlCommand(string.Format("SELECT Name FROM Password WHERE ID={0}", App.curPnID), con); TBlName.Text = cmd.ExecuteScalar().ToString(); //Всего очков cmd = new SqlCommand(string.Format("SELECT SUM(Points) FROM AchieveInfo WHERE PersonID={0}", App.curPnID), con); TBlPAll.Text = "Всего: "+cmd.ExecuteScalar().ToString(); //Очки месяц cmd = new SqlCommand(string.Format("SELECT SUM(Points) FROM AchieveInfo WHERE PersonID={0} AND Date Between convert(varchar(6), getdate(), 112) + '01' and dateadd(day, -1, dateadd(month, 1, convert(varchar(6), getdate(), 112) + '01'))", App.curPnID), con); TBlPMnt.Text = App.MonthName[DateTime.Now.Month]+": " + cmd.ExecuteScalar().ToString(); //Лучший/худший результат всего cmd = new SqlCommand(string.Format("SELECT DISTINCT(p.Name) , Sum(Points) FROM AchieveInfo ac LEFT OUTER JOIN Theme p ON ac.ThemeID=p.ID WHERE PersonID={0} GROUP BY p.Name", App.curPnID), con); TBlBSAll.Text = "Всего: "+FindMax(cmd.ExecuteReader()); TBlWSAll.Text = "Всего: "+FindMin(cmd.ExecuteReader()); //Лучший/худший результат - месяц cmd = new SqlCommand(string.Format("SELECT DISTINCT(p.Name) , Sum(Points) FROM AchieveInfo ac LEFT OUTER JOIN Theme p ON ac.ThemeID=p.ID WHERE PersonID={0} AND Date Between convert(varchar(6), getdate(), 112) + '01' and dateadd(day, -1, dateadd(month, 1, convert(varchar(6), getdate(), 112) + '01')) GROUP BY p.Name", App.curPnID), con); TBlBSMnt.Text = App.MonthName[DateTime.Now.Month] + ": " + FindMax(cmd.ExecuteReader()); TBlWSMnt.Text = App.MonthName[DateTime.Now.Month] + ": " + FindMin(cmd.ExecuteReader()); } }
private void Page_Load(object sender, System.EventArgs e) { string strSQLQuery; SqlConnection adoSqlConn =new SqlConnection("data source=blr-ec-112844;initial catalog=master;password=sa;persist security info=True;user id=sa;"); SqlCommand sqlcmdCommand = new SqlCommand("SELECT count(*) FROM testlang WHERE userfname=N'" + Request.Form["txtFName"] + "' AND userlname=N'" + Request.Form["txtLName"] + "'", adoSqlConn); SqlDataReader adosqlDataReader; adoSqlConn.Open(); sqlcmdCommand.CommandText = "SELECT count(*) FROM testlang WHERE userfname=N'" + Request.Form["txtFName"] + "' AND userlname=N'" + Request.Form["txtLName"] + "'"; adosqlDataReader = sqlcmdCommand.ExecuteReader(); adosqlDataReader.Read(); if (adosqlDataReader.Read()==false) { adosqlDataReader.Close(); Response.Write("<B>Thank You for Registering</B>"); //Format the SQL Query to Insert Data. strSQLQuery = "INSERT INTO testlang (userfname, userlname, userlangid,useraddress) VALUES(N'" + Request.Form["txtFName"] + "', N'" + Request.Form["txtLName"] + "','" + Request.QueryString["lang"] + "', N'" + Request.Form["txtAddress"] + "')"; //Insert the New Record. sqlcmdCommand.CommandText = strSQLQuery; sqlcmdCommand.ExecuteNonQuery(); } else Response.Write("<B>You have already registered</B>"); adosqlDataReader.Close(); //Format the SQL Query to Get Data. strSQLQuery = "SELECT UID, userfname, userlname, userlangid,useraddress FROM testlang WHERE userlangid='" + Request.QueryString["lang"] + "'"; //Response.Write(strSQLQuery) //Get All the records satisfying the LangID. sqlcmdCommand.CommandText = strSQLQuery; adosqlDataReader = sqlcmdCommand.ExecuteReader(); }
private void button2_Click(object sender, EventArgs e) { SqlCommand sqlCmd = new SqlCommand("select * from THE_CVENGERS.ROL where ROL_NOMBRE ='" + rol + "'", Conexion.getConexion()); SqlDataReader sqlReader = sqlCmd.ExecuteReader(); sqlReader.Read(); String idRol = sqlReader["ROL_ID"].ToString(); sqlReader.Close(); sqlCmd.CommandText = "select * from THE_CVENGERS.FUNCIONALIDAD where FUNC_NOMBRE ='" + listBox2.SelectedItem.ToString() + "'"; sqlReader = sqlCmd.ExecuteReader(); sqlReader.Read(); String idFuncion = sqlReader["FUNC_ID"].ToString(); sqlReader.Close(); //hacer el insert sqlCmd.CommandText = "insert into THE_CVENGERS.FUNCIONXROL(FXR_ROL_ID,FXR_FUNC_ID) values (" + idRol + "," + idFuncion + ")"; try { sqlCmd.ExecuteNonQuery(); listBox1.Items.Add(listBox2.SelectedItem.ToString()); int x = listBox2.SelectedIndex; listBox2.Items.RemoveAt(x); button2.Enabled = false; listBox2.Refresh(); listBox1.Refresh(); } catch (Exception ex) { MessageBox.Show(ex.Message, "Error", MessageBoxButtons.OK); } }
protected void Button1_Click(object sender, EventArgs e) { MultiView1.ActiveViewIndex = 0; MultiView2.ActiveViewIndex = 0; if (ViewState["getdata"] == null) { SqlConnection conn = new SqlConnection(constrUDB); string query = "select * from usertable where uname='" + Session["name"].ToString() + "'"; SqlCommand cmd = new SqlCommand(); cmd.CommandText = query; cmd.Connection = conn; conn.Open(); SqlDataReader dr = cmd.ExecuteReader(); if (dr.HasRows) { dr.Read(); lblname.Text = dr["fname"].ToString(); lblabout.Text = dr["about"].ToString(); lblun.Text = dr["uname"].ToString(); lblabtname.Text = (dr["fname"].ToString()).Split(' ')[0]; // Label1.Text = (dr["fname"].ToString()).Split(' ')[0]; ImageButton1.ImageUrl = dr["picurl"].ToString(); /* Image1.ImageUrl = dr["b1imgurl"].ToString(); Image2.ImageUrl = dr["b2imgurl"].ToString(); Image3.ImageUrl = dr["b3imgurl"].ToString(); Image4.ImageUrl = dr["b4imgurl"].ToString(); Image5.ImageUrl = dr["b5imgurl"].ToString(); lblbookname.Text = dr["b1name"].ToString(); lblbookname0.Text = dr["b2name"].ToString(); lblbookname1.Text = dr["b3name"].ToString(); lblbookname2.Text = dr["b4name"].ToString(); lblbookname3.Text = dr["b5name"].ToString(); lblbabt.Text = dr["b1abt"].ToString(); lblbabt0.Text = dr["b2abt"].ToString(); lblbabt1.Text = dr["b3abt"].ToString(); lblbabt2.Text = dr["b4abt"].ToString(); lblbabt3.Text = dr["b5abt"].ToString();*/ dr.Close(); //make connection only if required SqlConnection conn1 = new SqlConnection(constrBDB); cmd.Connection = conn1; cmd.CommandText = "select * from bookrecord where uname='" + Session["name"].ToString() + "'"; conn1.Open(); SqlDataReader dr1 = cmd.ExecuteReader(); GridView3.DataSource = dr1; GridView3.DataBind(); conn1.Close(); } else { lblname.Text = "NO RECORD FOUND!"; lblabout.Text = Session["name"].ToString(); } conn.Close(); ViewState["getdata"] = "I Have Done It Already"; } }
protected void Button1_Click(object sender, EventArgs e) { string status = ""; if (Button1.Text == "Submit Instant Request") { status = "Allocated"; } if (Button1.Text == "Submit Request") { status = "Pending"; } string insertstring = "INSERT INTO Request (ModuleID, RoundID, UserID, NoStudents, Status, NoRooms) VALUES('" + ListBoxModCodes.SelectedItem.Text + "'," + DropDownList3.SelectedValue + ",@UserID," + TextBoxStudents.Text + ",'" + status + "',1) "; InsertNewBooking.InsertCommand = insertstring; InsertNewBooking.Insert(); System.Data.SqlClient.SqlConnection MyConnection; System.Data.SqlClient.SqlCommand MyCommand; System.Data.SqlClient.SqlDataReader MyDataReader; MyConnection = new System.Data.SqlClient.SqlConnection("Data Source=co-web-3.lboro.ac.uk;Initial Catalog=team17;User ID=team17;Password=g6g88fcv"); MyConnection.Open(); MyCommand = new System.Data.SqlClient.SqlCommand(); MyCommand.Connection = MyConnection; MyCommand.CommandText = "SELECT RequestID FROM REQUEST"; MyDataReader = MyCommand.ExecuteReader(); string reqID = ""; while (MyDataReader.Read()) { reqID = MyDataReader.GetSqlValue(0).ToString(); } MyDataReader.Close(); MyDataReader = null; MyCommand.CommandText = "INSERT INTO RequestRoom (RequestID, RoomID) VALUES('" + reqID + "', '" + Label2.Text + "')"; MyDataReader = MyCommand.ExecuteReader(); MyDataReader.Close(); MyDataReader = null; for (int z = 0; z < CheckBoxList1.Items.Count; z++) { if (CheckBoxList1.Items[z].Selected == true) { for (int b = 0; b < CheckBoxList2.Items.Count; b++) { if (CheckBoxList2.Items[b].Selected == true) { MyCommand.CommandText = "INSERT INTO RequestTime (RequestID, Week, TimeID) VALUES(" + reqID + ", " + (z + 1) + ", " + b + ") "; MyDataReader = MyCommand.ExecuteReader(); MyDataReader.Close(); MyDataReader = null; } } } } MyCommand = null; MyConnection.Close(); MyConnection = null; Response.Redirect("~/Secure/booked.aspx?"+reqID); }
protected void Page_Load(object sender, EventArgs e) { if ((Session["SCSLogin"] != null) & (Session["SCSDate"] != null)) { if ((DateTime)Session["SCSDate"] <= DateTime.Now) Response.Redirect("Default.aspx"); login = (string)Session["SCSLogin"]; expDate = ((DateTime)Session["SCSDate"]).ToString(); Response.Write("<div align=center> В системе как: " + login + "<BR> В системе до: " + expDate + "<BR></div>"); Session["SCSDate"] = DateTime.Now.AddMinutes(10); Title = Title + " : " + login; /*if (Session["SCSReportDate1Flag"] == null) { Session["SCSReportDate1Flag"] = "False"; } if (Session["SCSReportDate2Flag"] == null) { Session["SCSReportDate2Flag"] = "False"; }/**/ string connectionstring = WebConfigurationManager.ConnectionStrings["SCSDataBase"].ConnectionString; SqlConnection con = new SqlConnection(connectionstring); try { con.Open(); SqlCommand cmd = new SqlCommand("", con); cmd.CommandText = "exec getUserAccess @lg"; cmd.Parameters.Add("@lg", login); int access = (int)cmd.ExecuteScalar(); if (access <= 1) { Response.Redirect("Cabinet.aspx"); } cmd.CommandText = "exec ShowFormReport @dtst, @dten, @lg"; cmd.Parameters.Add("@dtst", (DateTime)Session["SCSReportDate1"]); cmd.Parameters.Add("@dten", (DateTime)Session["SCSReportDate2"]); SqlDataReader dr = cmd.ExecuteReader(); gvVals.DataSource = dr; gvVals.DataBind(); dr.Close(); cmd.CommandText = "exec ShowFormReportOut @dtst, @dten, @lg"; dr = cmd.ExecuteReader(); gvOut.DataSource = dr; gvOut.DataBind(); dr.Close(); } catch (Exception err) { Response.Write(err.Message); } finally { con.Close(); } } else Response.Redirect("Default.aspx"); }
protected void Button1_Click(object sender, EventArgs e) { SqlConnection con = new SqlConnection(@"Data Source=.\SQLEXPRESS;AttachDbFilename=|DataDirectory|\database.mdf;Integrated Security=True;User Instance=True"); con.Open(); string sel = DropDownList1.SelectedValue.Trim(); SqlDataReader read; string s = "select * from factdata where uname = '" + TextBox1.Text + "'"; SqlCommand cmd = new SqlCommand(s, con); read = cmd.ExecuteReader(); string s1, s2; Label1.Visible = false; Label2.Visible = false; if (read.Read()) { // Label1.Text = read["uname"].ToString(); s1 = read["sq_que"].ToString(); s2 = read["sq_ans"].ToString(); // TextBox6.Text = read["city"].ToString(); // TextBox8.Text = read["pcode"].ToString(); // TextBox10.Text = read["country"].ToString(); if (s1 != DropDownList1.SelectedValue.Trim()) { Label1.Text = "Incorrect Security Question!"; Label1.Visible = true; con.Close(); read.Close(); return; } if (s2 != TextBox3.Text) { Label2.Text = "Incorrect Answer for selected security Question!"; Label2.Visible = true; con.Close(); read.Close(); return; } read.Close(); if (s1 == DropDownList1.SelectedValue.Trim() && s2 == TextBox3.Text) { string str = "select password from factdata where uname = '" + TextBox1.Text + "'"; SqlCommand cmnd = new SqlCommand(s, con); read = cmd.ExecuteReader(); if (read.Read()) { Label3.Text = "Your Password is : "; LabelP.Text = read["password"].ToString(); } // Response.Redirect("~/SetPass.aspx",true); } } }
public static string ExibeDadosVenda() { List<ItenVenda> itensDaVenda = new List<ItenVenda>(); using (SqlConnection sqlConn = new SqlConnection(ConnString)) { using (SqlCommand sqlCommand = new SqlCommand()) { string dadosVenda; sqlConn.Open(); sqlCommand.CommandText = "select * from vendas order by Id desc"; sqlCommand.Connection = sqlConn; SqlDataReader dataReader; dataReader = sqlCommand.ExecuteReader(); if (dataReader.Read()) { string idVenda = dataReader[0].ToString(); float valorDaVenda = float.Parse(dataReader[1].ToString()); int codOperador = int.Parse(dataReader[2].ToString()); dataReader.Close(); sqlCommand.Parameters.AddWithValue("idVenda", int.Parse(idVenda)); sqlCommand.CommandText = "Select * from itemVenda where IdVenda = @idVenda"; SqlDataReader dr; dr = sqlCommand.ExecuteReader(); while(dr.HasRows) { while (dr.Read()) { Produto p = ProdutoRepositoryIPML.BuscaProduto(int.Parse(dr[4].ToString())); ItenVenda item = new ItenVenda(p, int.Parse(dr[2].ToString())); itensDaVenda.Add(item); } dr.NextResult(); } dr.Close(); dadosVenda = "Código da Venda: " + idVenda; dadosVenda += "\nVendedor: " + codOperador; dadosVenda += "\n\nProdutos vendidos: \n"; foreach (ItenVenda item in itensDaVenda) { dadosVenda += "\nProduto: " + item.Produto.NomeProduto; dadosVenda += "\nPreço Unitário: " + item.Produto.PrecoVenda; dadosVenda += "\nQuantidade Comprada: " + item.Qtd+ "\n"; } dadosVenda += "\n\n Valor total da Venda: " + valorDaVenda; } else { return "Nenhuma venda encontrada"; } return dadosVenda; } } }
public Rendeles(int pAsztalID, int pRendeles_id) { _AsztalId = pAsztalID; setColumnModel(); setColumnModelSum(); _ScrollPos = 0; fRENDELES_ID = pRendeles_id; fDATUM = DateTime.Now; fFIZETVE = false; fASZTAL_ID = pAsztalID; fKEDVEZMENY = 0; SqlConnection sc = new SqlConnection(DEFS.ConSTR); sc.Open(); if (pRendeles_id != -1) { // meglevő rendelés be kell tölteni az ID-ra a rendelést. SqlCommand cmd = new SqlCommand(); cmd.Connection = sc; cmd.CommandType = CommandType.Text; cmd.CommandText = "SELECT ASZTAL_ID, isnull(PARTNER_ID,-1) PARTNER_ID, DATUM, FIZETVE, isnull(KEDVEZMENY,0) as KEDVEZMENY FROM RENDELES_FEJ WHERE RENDELES_ID =" + pRendeles_id.ToString(); SqlDataReader rdr = cmd.ExecuteReader(); while (rdr.Read()) { fASZTAL_ID = (int)rdr["ASZTAL_ID"]; fPARTNER_ID = (int)rdr["PARTNER_ID"]; if (fPARTNER_ID > 0) { usedPartner = new Partner(fPARTNER_ID); } fDATUM = (DateTime)rdr["DATUM"]; fFIZETVE = (1 == (int)rdr["FIZETVE"]); fKEDVEZMENY = (double)rdr["KEDVEZMENY"]; } rdr.Close(); cmd.CommandType = CommandType.Text; cmd.CommandText = "SELECT SOR_ID FROM RENDELES_SOR WHERE isnull(DELETED,0) = 0 AND isnull(FIZETVE,0) = 0 AND RENDELES_ID =" + pRendeles_id.ToString(); rdr = cmd.ExecuteReader(); while (rdr.Read()) { lRendelesSor.Add(new RendelesSor((int)rdr["SOR_ID"], new SqlConnection(DEFS.ConSTR), false)); } rdr.Close(); } sc.Close(); }
//初始化信息 protected void BindData() { try { int courseID = Int32.Parse(Request.QueryString["courseID"].ToString()); List<String> allTeachers = new List<string>(); string queryCourse = "select name, startdate, enddate from Course where id=" + courseID; string queryTeachers = "select name from Teacher"; using (SqlConnection connection = new SqlConnection(ConfigurationManager.ConnectionStrings["SQLConnStringSTEduSys"].ConnectionString)) { connection.Open(); SqlCommand command = new SqlCommand(queryCourse, connection); SqlDataReader reader = command.ExecuteReader(); while (reader.Read()) { oldCourseName.Value = reader[0].ToString(); tbCourseName.Text = reader[0].ToString(); tbStartDate.Text = reader[1].ToString(); tbEndDate.Text = reader[2].ToString(); } reader.Close(); command.CommandText = queryTeachers; reader = command.ExecuteReader(); while (reader.Read()) { allTeachers.Add(reader[0].ToString()); } // call close when done reading. reader.Close(); } String temp = Request.QueryString["teachers"].ToString(); String[] teachers = temp.Trim("'".ToCharArray()).Split('/'); if (teachers.Length > 1) { tbTeacher2.Text = teachers[1]; } tbTeacher1.Text = teachers[0]; for (int i = 0; i < allTeachers.Count; i++) { ddlTeacher1.Items.Add(allTeachers[i]); ddlTeacher2.Items.Add(allTeachers[i]); } } catch (Exception e) { Response.Redirect("./Course_Manage.aspx"); } }
public void getItems(string orderID, int OrgID, ref int[] items, ref int[] itemTypes, ref string[] inStock) { SqlDataReader read; SqlCommand cmd = new SqlCommand(); SqlConnection conn = new SqlConnection(e4Conn); string itemList = ""; string itemTypeList = ""; string[] parseString; string[] parseTypes; conn.Open(); cmd.Connection = conn; cmd.CommandText = "SELECT * FROM Data WHERE Value00 = '" + orderID + "' AND Name = 'Order' AND OrgID = '" + OrgID + "'"; read = cmd.ExecuteReader(); if (read.HasRows) { read.Read(); try { itemList = System.Convert.ToString(read["Value05"]); itemTypeList = System.Convert.ToString(read["Value06"]); parseString = itemList.Split(','); parseTypes = itemTypeList.Split(','); for (int y = 0; y < parseString.Length; y++) { items[y] = System.Convert.ToInt32(parseString[y]); itemTypes[y] = System.Convert.ToInt32(parseTypes[y]); read.Close(); cmd.CommandText = "SELECT * FROM Data WHERE OrgID = '" + OrgID + "' AND Value00 = '" + items[y] + "' AND ObjID = '" + itemTypes[y] + "'"; read = cmd.ExecuteReader(); if (read.HasRows) { read.Read(); if (System.Convert.ToInt32(read["Value06"]) > 0) { inStock[y] = "Yes"; } else { inStock[y] = "No"; } } } } catch (Exception ex) { } } }
public List<ChatMessageModel> GetMessagesLimit(int limit) { List<ChatMessageModel> msg = new List<ChatMessageModel>(); if (limit < 0) limit = 0; using (SqlConnection conn = SqlConnectionService.GetConnection()) { string query = String.Format("SELECT TOP {0} u.UserId, u.Sex, m.Message, m.Time, u.UserLogin FROM MessageLogs m JOIN Users u on u.UserId = m.UserId ORDER BY m.MessageId DESC ", limit); using (SqlCommand cmd = new SqlCommand(query, conn)) { conn.Open(); cmd.Parameters.AddWithValue("@Limit", limit); var reader = cmd.ExecuteReader(); while (reader.Read()) { msg.Add(Helper.CreateChatMessage(reader["UserLogin"].ToString(), Convert.ToInt32(reader["UserId"]), reader["Message"].ToString(), Convert.ToInt32(reader["Sex"]), reader["Time"].ToString())); } conn.Close(); return msg; } } }
protected void LinkButton1_Click(object sender, EventArgs e) { SqlConnection con = new SqlConnection("Data Source=DIP\\SQLEXPRESS;Initial Catalog=UVPCE_DB;Integrated Security=True"); SqlCommand cmd = new SqlCommand("insert into [user](username,subject,comment,posteddate) values(@username,@subject,@comment,@postedate)", con); cmd.Parameters.AddWithValue("@username", Textname.Text); cmd.Parameters.AddWithValue("@subject", txtSubject.Text); cmd.Parameters.AddWithValue("@comment", txtComment.Text); cmd.Parameters.AddWithValue("@postedate", DateTime.Now); con.Open(); //SqlCommand cmd = new SqlCommand("insert into (username,subject,comment,posteddate) values('"+Textname.Text+"','"+txtSubject.Text+"','"+txtComment+"')",con); cmd.ExecuteNonQuery(); // con.Close(); SqlCommand cmd1 = new SqlCommand("select no from [user] where username='" + Textname.Text + "' and subject='" + txtSubject.Text + "' and comment='" + txtSubject.Text + "'", con); SqlDataReader dr = cmd1.ExecuteReader(); while (dr.Read()) { Label1.Text = dr["no"].ToString(); } Textname.Text = string.Empty; txtSubject.Text = string.Empty; txtComment.Text = string.Empty; BindRepeaterData(); }
public building(int id) { try{ SqlConnection conn = new SqlConnection(System.Configuration.ConfigurationManager.ConnectionStrings["mainconn"].ConnectionString); conn.Open(); SqlCommand cmd = new SqlCommand("select * FROM building WHERE id = @id", conn); cmd.Parameters.AddWithValue("id", id); SqlDataReader dr = cmd.ExecuteReader(); dr.Read(); ID = new dataObject(id); Name = new dataObject(dr["Name"].ToString()); Address1 = new dataObject(dr["Address1"].ToString()); Address2 = new dataObject(dr["Address2"].ToString()); Address3 = new dataObject(dr["Address3"].ToString()); City = new dataObject(dr["City"].ToString()); State = new dataObject(dr["State"].ToString()); ZipCode = new dataObject(dr["ZipCode"].ToString()); PhoneNumber = new dataObject(dr["PhoneNumber"].ToString()); PhoneNumberExtension = new dataObject(dr["PhoneNumberExtension"].ToString()); FaxNumber = new dataObject(dr["FaxNumber"].ToString()); MobilePhoneNumber = new dataObject(dr["MobilePhoneNumber"].ToString()); EmailAddress = new dataObject(dr["EmailAddress"].ToString()); Contact = new dataObject(dr["Contact"].ToString()); Active = new dataObject(Convert.ToBoolean(dr["Active"])); Comment = new dataObject(dr["Comment"].ToString()); InputDate = new dataObject(Convert.ToDateTime(dr["InputDate"])); InputEmploee = new dataObject(new employee(Convert.ToInt32(dr["InputEmployeeID"]))); }catch(Exception e){ throw e; } }
protected void MostrarSeleccao(Object obj, EventArgs e) { saida.Text = ""; ddlMunicipios.Items.Clear(); ddlMunicipios.Items.Insert(0, new ListItem("Seleccione...", "0")); //if(dDL.SelectedIndex!=0) //{ //ddlMunicipios.DataSource = municipios[dDL.SelectedIndex-1]; //ddlMunicipios.DataBind(); SqlDB Bd = new SqlDB("ConStr_DivAdmin"); string str = "SELECT NomeMunicipio from Municipios where [CodigoDistrito] = @distrito"; SqlCommand cmd = new SqlCommand(str, Bd.SqlConDB); cmd.Parameters.AddWithValue("@distrito",dDL.SelectedItem.Value); cmd.Connection = Bd.SqlConDB; Bd.SqlConDB.Open(); SqlDataReader dR = cmd.ExecuteReader(); //efectuar o data binding ddlMunicipios.DataSource = dR; ddlMunicipios.DataTextField = "NomeMunicipio"; ddlMunicipios.DataValueField = "IdMunicipio"; ddlMunicipios.DataBind(); dR.Close(); Bd.SqlConDB.Close(); //} }
protected override void OnLoad(EventArgs e) { base.OnLoad(e); if (!this.IsPostBack) { //efectuar o data binding //dDL.DataSource = distritos; //dDL.DataBind(); SqlDB Bd = new SqlDB("ConStr_DivAdmin"); string str = "SELECT NomeDistrito from Distritos"; SqlCommand cmd = new SqlCommand(str, Bd.SqlConDB); Bd.SqlConDB.Open(); SqlDataReader dR = cmd.ExecuteReader(); //efectuar o data binding dDL.DataSource = dR; dDL.DataTextField = "NomeDistrito"; dDL.DataBind(); dR.Close(); Bd.SqlConDB.Close(); } return; }