protected void ShowPageInfo(Pagedb db) { bool valid = true; string pageid = Request.QueryString["pageid"]; if (String.IsNullOrEmpty(pageid)) { valid = false; } show_pagetitle.InnerHtml = ""; show_pagebody.InnerHtml = ""; //We will attempt to get the record we need if (valid) { HTTP_Page page_record = db.FindPage(Int32.Parse(pageid)); show_pagetitle.InnerHtml = page_record.GetPagetitle(); show_pagebody.InnerHtml = page_record.GetPagebody(); edit_page.InnerHtml = "<div><a href =\"EditPage.aspx?pageid=" + pageid + "\">Edit</a></div>"; } else { valid = false; } if (!valid) { error_summary.InnerHtml = "There was an error finding that article."; } }
//Show the information of the article that needs editting protected void ShowPageInfo(Pagedb db) { bool valid = true; string pageid = Request.QueryString["pageid"]; if (String.IsNullOrEmpty(pageid)) { valid = false; } show_pagetitle.InnerHtml = ""; show_pagebody.InnerHtml = ""; if (valid) { HTTP_Page page_record = db.FindPage(Int32.Parse(pageid)); show_pagetitle.InnerHtml = page_record.GetPagetitle(); show_pagebody.InnerHtml = page_record.GetPagebody(); } else { valid = false; } //Problem //1. Edit page did not work //Reason: the query in Pagedb.cs is wrong //Solution/status: fixed //2. The pagebody did not update //Reason: Because of the "'" apostrope that make the wrong query //Solution/status + Future reference: Look into SQL parameterized query C# ASP.NET }