public void insertbook(bookDTO bDto) { sqlConnection.Open(); String query = "insert into books (courseno,bookname,coursename,quantity,writer) values('" + bDto.COURSENO + "','" + bDto.BOOKNAME + "','" + bDto.COURSENAME + "','" + bDto.QUANTITY + "','" + bDto.WRITER + "')"; sqlCommand = new SqlCommand(query, sqlConnection); sqlCommand.ExecuteNonQuery(); sqlConnection.Close(); }
public void requestbook(bookDTO bDto) { sqlConnection.Open(); String query = "insert into bookrequest (COURSENO,BOOKNAME,COURSENAME,WRITER,ID) values('" + bDto.COURSENO + "','" + bDto.BOOKNAME + "','" + bDto.COURSENAME + "','" + bDto.WRITER + "','" + bDto.ID + "')"; sqlCommand = new SqlCommand(query, sqlConnection); sqlCommand.ExecuteNonQuery(); sqlConnection.Close(); }