public void InsertUser(User user)
{
using (SqlConnection conn = CreateConnection())
{
try
{
SqlCommand cmd = new SqlCommand("appSchema.uspInsertUser", conn);
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.Add("@LoginID", SqlDbType.NVarChar, 20).Value = user.LoginID;
cmd.Parameters.Add("@Password", SqlDbType.NVarChar, 100).Value = user.Password;
cmd.Parameters.Add("@Name", SqlDbType.NVarChar, 50).Value = user.Name;
cmd.Parameters.Add("@Address", SqlDbType.NVarChar, 30).Value = user.Address;
cmd.Parameters.Add("@Postnumber", SqlDbType.NVarChar, 6).Value = user.Postnumber;
cmd.Parameters.Add("@City", SqlDbType.NVarChar, 20).Value = user.City;
cmd.Parameters.Add("@Email", SqlDbType.NVarChar, 40).Value = user.Email;
cmd.Parameters.Add("@Telephone", SqlDbType.NVarChar, 15).Value = user.Telephone;
cmd.Parameters.Add("@Mobile", SqlDbType.NVarChar, 15).Value = user.Mobile;
cmd.Parameters.Add("@Administrator", SqlDbType.Bit, 2).Value = false;
cmd.Parameters.Add("@UserID", SqlDbType.Int, 4).Direction = ParameterDirection.Output;
conn.Open();
cmd.ExecuteNonQuery();
user.UserID = (int)cmd.Parameters["@UserID"].Value;
}
catch
{
throw new ApplicationException("An error occured in the data access layer.");
}
}
}
public void UpdateUser(User user)
{
ICollection<ValidationResult> validationResults;
if (!user.Validate(out validationResults))
{
var ex = new ValidationException("Objektet klarade inte valideringen.");
ex.Data.Add("ValidationResults", validationResults);
throw ex;
}
if (user.UserID == 0) // New post if ID is 0!
{
UserDAL.InsertUser(user);
}
else
{
UserDAL.UpdateUser(user);
}
}
