protected void Page_Load(object sender, EventArgs e) { string q; if (Request.Form["sub"] != null) { q = "select * from USERS where TZ='" + Request.Form["tz"] + "'"; if (DalBll.IsExist(q)) { msg = "משתמש תפוס"; } else { q = "insert into USERS(TZ,FNAME,LNAME,PHONE,EMAIL,PASS,GENDER,COUNTRY,ADMIN) VALUES("; q += "'" + Request.Form["TZ"] + "',"; q += "N'" + Request.Form["FNAME"] + "',"; q += "N'" + Request.Form["LNAME"] + "',"; q += "N'" + Request.Form["PHONE"] + "',"; q += "'" + Request.Form["EMAIL"] + "',"; q += "'" + Request.Form["PASS"] + "',"; q += "N'" + Request.Form["GENDER"] + "',"; q += "'" + Request.Form["COUNTRY"] + "',"; q += "'false')"; DalBll.DoQuery(q); msg = "<font style = color:blue> הרשמתך התקבלה </font>"; } } }
protected void Page_Load(object sender, EventArgs e) { if (Session["IsAdmin"] == null || (bool)Session["IsAdmin"] != true) { Response.Redirect("notLogged.aspx"); } string query = "DELETE FROM users WHERE ID=" + Request.QueryString["idNum"]; DalBll.DoQuery(DalBll.GetConnection(), query); Response.Redirect("AdminManage.aspx"); }
protected void Page_Load(object sender, EventArgs e) { if (Session["user"] == null) { Response.Redirect("PageAdmin.aspx"); } if ((bool)Session["admin"] != true) { Response.Redirect("PageAdmin.aspx"); } DataSet ds = new DataSet(); SqlDataAdapter da = new SqlDataAdapter(q, DalBll.GetConnection()); da.Fill(ds, "USERS"); DataTable dt = ds.Tables["USERS"]; supportList += "<table cellpadding='2' cellspacing='1' border='3'>"; supportList += "<tr >"; supportList += "<th > תעודת זהות</th>"; supportList += "<th > שם פרטי</th>"; supportList += "<th > שם משפחה</th>"; supportList += "<th >מין</th>"; supportList += "<th >טלפון</th>"; supportList += "<th >אימייל</th>"; supportList += "<th >מדינה</th>"; supportList += "<th >סיסמא</th>"; supportList += "<th >מנהל</th>"; supportList += "</tr>"; for (int i = 0; i < dt.Rows.Count; i++) { supportList += "<tr>"; supportList += "<td >" + dt.Rows[i]["TZ"] + "</td>"; supportList += "<td >" + dt.Rows[i]["FNAME"] + "</td>"; supportList += "<td >" + dt.Rows[i]["LNAME"] + "</td>"; supportList += "<td >" + dt.Rows[i]["GENDER"] + "</td>"; supportList += "<td >" + dt.Rows[i]["PHONE"] + "</td>"; supportList += "<td >" + dt.Rows[i]["EMAIL"] + "</td>"; supportList += "<td >" + dt.Rows[i]["COUNTRY"] + "</td>"; supportList += "<td >" + dt.Rows[i]["PASS"] + "</td>"; supportList += "<td >" + dt.Rows[i]["ADMIN"] + "</td>"; supportList += "</tr>"; } supportList += "</table>"; }
protected void Page_Load(object sender, EventArgs e) { if (Request.Form["sub"] != null) { string query; query = "SELECT * FROM Users WHERE ID = " + Request.Form["id"]; if (DalBll.IsExist(DalBll.GetConnection(), query)) { msg = "תעודת זהות קיימת כבר, אנא נסה שוב"; } else { DateTime dt = DateTime.Now; query = "INSERT INTO Users (ID,Fname,Lname,Password,Email,Gender,Favourites,Requests,IsAdmin,DateCreated) VALUES("; query += "'" + Request.Form["id"] + "'"; query += ",N'" + Request.Form["first"] + "'"; query += ",N'" + Request.Form["last"] + "'"; query += ",N'" + Request.Form["pass"] + "'"; query += ",'" + Request.Form["mail"] + "'"; string g; g = Request.Form["gender"].ToString(); if (g.Equals("זכר")) { query += ",N'" + "true" + "'"; } else { query += ",N'" + "false" + "'"; } query += ",N'" + Request.Form["sel"] + "'"; query += ",N'" + Request.Form["req"] + "'"; query += ",N'" + "false" + "'"; query += ",N'" + dt.ToString() + "')"; DalBll.DoQuery(DalBll.GetConnection(), query); msg = "הרשמה בוצעה בהצלחה"; } } }
protected void Page_Load(object sender, EventArgs e) { if (Session["user"] == null) { login += "<table border=\"0\" cellpadding=\"0\" cellspacing=\"10\" style=\"direction: rtl\" translate=\"no\">"; login += "<tr>"; login += "<td><b> תעודת זהות </b>"; login += "</td>"; login += "<td><input type=\"text\" size=15; name=\"ident\"/></td>"; login += "</tr>"; login += "<tr>"; login += "<td><b> סיסמא </b>"; login += "</td>"; login += "<td><input type=\"text\" size=15; name=\"PASS\"/></td>"; login += "</tr>"; login += "<tr>"; login += "<tr><td colspan=\"2\"><center><input type=\"submit\" name=\"conc\"value=\"התחבר\"/></td></center></tr>"; login += "</table>"; if (Request.Form["conc"] != null) { p = " select * from USERS where TZ='" + Request.Form["ident"] + "' and PASS='******'"; SqlDataReader data = DalBll.DataReadSQL(p); if (data.Read()) { Session["id"] = data["TZ"]; Session["admin"] = data["ADMIN"]; Session["user"] = data["FNAME"] + " " + data["LNAME"]; } Response.Redirect("Home.aspx"); } } else { home = "שלום " + " " + Session["user"]; punnel = "<a href=edit.aspx>פרטים אישיים</a>|<a href =logout.aspx>תתנתק</a>"; if ((bool)Session["admin"]) { punnel += "|<a href= Admin.aspx>משתמשים</a>"; } } }
protected void Page_Load(object sender, EventArgs e) { DateTime now = DateTime.Now.Date; time = "<div id=time>" + now.Date.ToShortDateString() + "</div>"; string user = Convert.ToString(Session["user"]); if ((Session["user"] == null) || (user == " ")) { logIn = "******"; logIn += "<tr>"; logIn += "<td colspan=2>שלום אורח! אנא התחבר על מנת להנות ממלוא האתר!</td>"; logIn += "</tr>"; logIn += "<tr>"; logIn += " <td > תעודת זהות</td>"; logIn += " <td align='left'> <input type=text style=width:80px id=idNum name=idNum1 /> </td></tr>"; logIn += "<tr><td >סיסמא</td><td align='left'><input type=password style=width:80px id=password1 name=pss /></td>"; logIn += "</tr><tr><td colspan=2 style='padding-right:42px;padding-top:15px;'><input type=submit id=submit name=submit value='התחבר'/></td></tr>"; logIn += "<tr><ul id=error></ul></tr></table>"; if (Request.Form["submit"] != null) { string query; query = "SELECT * FROM Users WHERE ID = N'" + Request.Form["idNum1"] + "' AND Password= N'" + Request.Form["pss"] + "'"; SqlDataReader data = DalBll.DataReadSQL(DalBll.GetConnection(), query); if (data.Read()) { Session["user"] = data["Fname"] + " " + data["Lname"]; Session["id"] = data["ID"]; if (Convert.ToBoolean(data["IsAdmin"])) { Session["isAdmin"] = true; } else { Session["isAdmin"] = false; } } else { Session["warn"] = "<div id=warn> תעודת זהות או שם משתמש שגויים </div>"; } /* * * if (Request.Form["idNum1"].Equals("admin")) * Session["isAdmin"] = true; * else * Session["isAdmin"] = false; */ Response.Redirect("Home.aspx"); } } if (Session["user"] != null) { hello = "<font id=name>שלום " + Session["user"].ToString() + "</font>"; topPanel += "<br/><br/><br/><a href='EditUser.aspx'><b>פרטים אישיים</b></a>"; topPanel += " | <a href='logOut.aspx'><b>התנתק</b></a>"; if ((bool)(Session["isAdmin"])) { hello = "<font> שלום " + Session["user"].ToString() + "<br><b> מנהל האתר</b></font>"; topPanel += " |<a href='AdminManage.aspx'><b><br/>ניהול משתמשים</a> |</b> <a href='DeleteNews.aspx'><b>ערוך הודעות</a></b>|<br/>"; } } }
protected void Page_Load(object sender, EventArgs e) { if (Session["IsAdmin"] == null || (bool)Session["IsAdmin"] != true) { Response.Redirect("notLogged.aspx"); } string selectQuery = "select * from Users "; if (Request.Form["do"] != null) { if (Request.Form["Fn"].ToString() != null && Request.Form["Fn"].ToString() != "") { selectQuery += "WHERE Fname like N'" + Request.Form["Fn"].ToString() + "%' "; if (Request.Form["Ln"].ToString() != null && Request.Form["Ln"].ToString() != "") { selectQuery += "AND Lname like N'" + Request.Form["Ln"].ToString() + "%'"; } } else if (Request.Form["Ln"].ToString() != null && Request.Form["Ln"].ToString() != "") { selectQuery += "WHERE Lname like N'" + Request.Form["Ln"].ToString() + "%'"; } switch (Request.Form["sort"].ToString()) { case "name": selectQuery += "ORDER BY Fname "; break; case "last": selectQuery += "ORDER BY Lname "; break; case "date": selectQuery += "ORDER BY DateCreated "; break; } if (Request.Form["sort"].ToString() != "none") { if (Request.Form["ord"].ToString() == "up") { selectQuery += "ASC "; } else { selectQuery += "DESC "; } } } DataSet ds = new DataSet(); SqlDataAdapter da = new SqlDataAdapter(selectQuery, DalBll.GetConnection()); da.Fill(ds, "Users"); DataTable dt = ds.Tables["Users"]; showUsers += "<table cellspacing=5 cellpadding=5 border=1 id=ustable>"; showUsers += "<tr>"; showUsers += "<th width=100%> שם פרטי </th>"; showUsers += "<th width=100%> שם משפחה </th>"; showUsers += "<th width=100%> סיסמא </th>"; showUsers += "<th width=100%> תעודת זהות </th>"; showUsers += "<th width=100%> אימייל </th>"; showUsers += "<th width=100%> מין </th>"; showUsers += "<th width=100%> תכניות אהובות </th>"; showUsers += "<th width=100%> בקשות</th>"; showUsers += "<th width=100%> הרשאת מנהל</th>"; showUsers += "<th width=100%> תאריך הצטרפות</th>"; showUsers += "</tr>"; for (int i = 0; i < dt.Rows.Count; i++) { showUsers += "<tr>"; showUsers += "<td width=100%>" + dt.Rows[i]["Fname"] + "</td>"; showUsers += "<td width=100%>" + dt.Rows[i]["Lname"] + "</td>"; showUsers += "<td width=100%>" + dt.Rows[i]["Password"] + "</td>"; showUsers += "<td width=100%>" + dt.Rows[i]["ID"] + "</td>"; showUsers += "<td width=100%>" + dt.Rows[i]["Email"] + "</td>"; if (dt.Rows[i]["Gender"].ToString().ToLower() == "true") { showUsers += "<td width=100%>" + "זכר" + "</td>"; } else if (dt.Rows[i]["Gender"].ToString().ToLower() == "false") { showUsers += "<td width=100%>" + "נקבה" + "</td>"; } else { showUsers += "<td width=100%></td>"; } showUsers += "<td width=100%>" + dt.Rows[i]["Favourites"] + "</td>"; showUsers += "<td width=100%>" + dt.Rows[i]["Requests"] + "</td>"; if (dt.Rows[i]["IsAdmin"].ToString().ToLower() == "true") { showUsers += "<td width=100%>" + "יש" + "</td>"; } else { showUsers += "<td width=100%>" + "אין" + "</td>"; } showUsers += "<td width=100%>" + dt.Rows[i]["DateCreated"] + "</td>"; if (dt.Rows[i]["IsAdmin"].ToString().ToLower() == "true") { showUsers += "<td>מחק"; } else { showUsers += "<td><a href='RemoveUser.aspx?idNum=" + dt.Rows[i]["ID"] + "'>מחק</a>"; } showUsers += " <a href='EditUser.aspx?idNum=" + dt.Rows[i]["ID"] + "'>ערוך</a></td>"; } showUsers += "</table>"; }
protected void Page_Load(object sender, EventArgs e) { string query = ""; string idNum = ""; if (Session["isAdmin"] == null || Session["user"] == null) { Response.Redirect("notLogged.aspx"); } if (Request.Form["sub"] != null) { if (Request.QueryString["idNum"] != null) { idNum = Request.QueryString["idNum"]; } else { idNum = Session["id"].ToString(); } query += "UPDATE Users SET "; query += "Fname = N'" + Request.Form["first"] + "'"; query += ",Lname = N'" + Request.Form["last"] + "'"; query += ",Password = N'" + Request.Form["pass"] + "'"; query += ",Email = N'" + Request.Form["mail"] + "'"; string g; g = Request.Form["gender"].ToString(); if (g.Equals("זכר")) { query += ",Gender = N'" + "true" + "'"; } else { query += ",Gender = N'" + "false" + "'"; } string s = Request.Form["sel"]; query += ",Favourites = N'" + Request.Form["sel"] + "'"; query += ",Requests = N'" + Request.Form["req"] + "'"; if ((bool)Session["IsAdmin"] == true) { if (Request.Form["isAdmin"] != null) { query += ",IsAdmin = N'" + Request.Form["isAdmin"].ToString().Equals("יש") + "' "; } } query += "WHERE ID = '" + idNum + "'"; DalBll.DoQuery(DalBll.GetConnection(), query); msgstatus = "<center><font style='font-size:25px;'>פרטיו של " + Request.Form["first"] + " " + Request.Form["last"] + " עודכנו בהצלחה</font>"; if ((bool)Session["isAdmin"] == true) { msgstatus += "<br/><a href='AdminManage.aspx'>חזור לעריכת משתמשים </a>"; } msgstatus += "<br/><a href='EditUser.aspx'>חזור לעריכת פרטים אישיים </a></center>"; } else { if (Request.QueryString["idNum"] != null) { idNum = Request.QueryString["idNum"]; } else { idNum = Session["id"].ToString(); } query += "SELECT * FROM Users WHERE ID = '" + idNum + "'"; SqlDataReader data = DalBll.DataReadSQL(DalBll.GetConnection(), query); if (data.Read()) { table = @"<table cellpadding=5 cellspacing=5> <tr> <td>תעודת זהות:</td> <td><input type=text name=id disabled=disabled value=" + idNum + @" /></td> </tr> <tr> <td>שם:</td> <td><input type=text name=first value=" + data["Fname"] + @" /></td> </tr> <tr> <td>שם משפחה:</td> <td><input type=text name=last value=" + data["Lname"] + @" /></td> </tr> <tr> <td>סיסמא:</td> <td><input type=password name=pass value=" + data["Password"] + @" /></td> </tr> <tr> <td>אימות סיסמא:</td> <td><input type=password name=checkpass /></td> </tr> <tr> <td>אימייל:</td> <td><input type=text name=mail value=" + data["Email"] + @" /></td> </tr>"; if ((bool)Session["isAdmin"] == true) { table += @" <tr> <td>הרשאת מנהל</td>"; if ((bool)data["IsAdmin"]) { table += @"<td><select name=IsAdmin disabled='disabled'><option value ='יש'>יש</option><option value='אין' >אין</option></select></td></tr>"; } else { table += @"<td><select name=IsAdmin ><option>אין</option><option>יש</option></select></td></tr>"; } } table += @" <tr> <td>מין:</td>"; bool flag = (bool)data["Gender"]; if ((bool)data["Gender"]) { table += @"<td><input type=radio name=gender value=זכר checked=checked/>זכר<input type=radio name=gender value=נקבה/>נקבה</td>"; } else { table += @"<td><input type=radio name=gender value=זכר />זכר<input type=radio name=gender checked=checked value=נקבה/>נקבה</td>"; } table += @"<td>בקשות מיוחדות:</td> </tr> <tr> <td>תוכניות אהובות:</td>"; if (data["Favourites"].ToString().Split(',').Contains("פוקימון")) { table += @"<td><input type=checkbox checked=checked name=sel value=פוקימון>פוקימון</td>"; } else { table += @"<td><input type=checkbox name=sel value=פוקימון>פוקימון</td>"; } table += @" <td rowspan=4> <textarea name=req cols=25 rows=7 @>" + data["Requests"] + @"</textarea> </td> </tr> <tr> <td></td>"; if (data["Favourites"].ToString().Split(',').Contains("דרגון בול זי")) { table += @"<td><input type=checkbox name=sel checked=checked value='דרגון בול זי'>דרגון בול זי</td>"; } else { table += @"<td><input type=checkbox name=sel value='דרגון בול זי'>דרגון בול זי</td>"; } table += @" </tr> <tr> <td></td>"; if (data["Favourites"].ToString().Split(',').Contains("איך פגשתי את אימא")) { table += @"<td><input type=checkbox name=sel checked=checked value='איך פגשתי את אימא'>איך פגשתי את אימא</td>"; } else { table += @"<td><input type=checkbox name=sel value='איך פגשתי את אימא'>איך פגשתי את אימא</td>"; } table += @" </tr> <tr> <td></td>"; if (data["Favourites"].ToString().Split(',').Contains("שנות ה-70")) { table += @"<td><input type=checkbox checked=checked name=sel value='שנות ה-70'>שנות ה-70 </td>"; } else { table += @"<td><input type=checkbox name=sel value='שנות ה-70'>שנות ה-70 </td>"; } table += @" </tr> <tr align=center> <td colspan=3><input type=submit name=sub value=עדכן /></td> </tr> </table>"; } } }