// Make Sure Viewer is Author public void CheckAuthor() { SqlConnection sqlConnAuth = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString); SqlCommand cmdauth = new SqlCommand("SELECT tbl_ListsMaster.UserId FROM tbl_ListsMaster WHERE tbl_ListsMaster.ListId ='" + grabListId() + "'", sqlConnAuth); cmdauth.Connection.Open(); SqlDataReader CheckAuthor; CheckAuthor = cmdauth.ExecuteReader(); while (CheckAuthor.Read()) { this.lb_AuthorId.Text = CheckAuthor["UserId"].ToString(); } cmdauth.Connection.Close(); cmdauth.Connection.Dispose(); if (User.Identity.IsAuthenticated == true) { // Get UserID this.lb_UserId.Text = FetchUser.UserID(); } else { this.lb_UserId.Text = "Guest"; } if (this.lb_AuthorId.Text == this.lb_UserId.Text) { // User is Author } else { // User is NOT Author Server.Transfer("/Default.aspx"); } }
protected void btn_addfolder_Click(object sender, EventArgs e) { if (Page.IsValid) { // Insert Folder to DB SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString); SqlCommand cmd = new SqlCommand("INSERT INTO tbl_FoldersMaster (UserId, FolderName)VALUES(@UserId, @FolderName)", sqlConn); cmd.Parameters.Add("@UserId", SqlDbType.VarChar, 255).Value = FetchUser.UserID(); cmd.Parameters.Add("@FolderName", SqlDbType.VarChar, 255).Value = this.tb_addfolder.Text; cmd.Connection.Open(); cmd.ExecuteNonQuery(); cmd.Connection.Close(); cmd.Connection.Dispose(); // Clear Textbox this.tb_addfolder.Text = ""; // Call Update Panel to avoid duplicates BindFolderList(); } }
//// END LINK BUTTONS //// //// BEGIN BUTTONS ///// protected void btn_addlink_Click(object sender, EventArgs e) { if (Page.IsValid) { // Insert Favorite to DB SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString); SqlCommand cmd = new SqlCommand("INSERT INTO tbl_LinksMaster (UserId, LinkUrl, LinkName, LinkDescription, LinkPrivate)VALUES(@UserId, @LinkURL, @LinkTitle, @LinkDescription, @LinkPrivate);SELECT @@IDENTITY", sqlConn); cmd.Parameters.Add("@UserId", SqlDbType.VarChar, 255).Value = FetchUser.UserID(); cmd.Parameters.Add("@LinkURL", SqlDbType.VarChar, 255).Value = this.tb_LinkUrl.Text; cmd.Parameters.Add("@LinkTitle", SqlDbType.VarChar, 255).Value = this.tb_LinkTitle.Text; cmd.Parameters.Add("@LinkDescription", SqlDbType.VarChar).Value = this.tb_Description.Text; cmd.Parameters.Add("@LinkPrivate", SqlDbType.Bit, 1).Value = this.cb_isprivate.Checked; cmd.Connection.Open(); string LinkIdReturn = cmd.ExecuteScalar().ToString(); cmd.Connection.Close(); cmd.Connection.Dispose(); // Add Link to List SqlConnection sqlConn2 = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString); SqlCommand add = new SqlCommand("INSERT INTO tbl_ListsMembers (LinkId, ListId)VALUES('" + LinkIdReturn + "','" + grabListId() + "')", sqlConn2); add.Connection.Open(); add.ExecuteNonQuery(); add.Connection.Close(); add.Connection.Dispose(); //Redirect to self to avoid duplicates BindLinkList(); this.tb_LinkUrl.Text = ""; this.tb_LinkTitle.Text = ""; this.tb_Description.Text = ""; } }
private void BindFolders(DropDownList ddl_folderMove) { string FolderSelectSQL = "SELECT UPPER(FolderName) as FolderName, FolderId FROM tbl_FoldersMaster WHERE UserId ='" + FetchUser.UserID() + "' ORDER BY FolderName ASC"; // Use SQL Statement to Select Records from DB SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString); SqlCommand cmd = new SqlCommand(FolderSelectSQL, sqlConn); cmd.Connection.Open(); SqlDataReader RepValues; RepValues = cmd.ExecuteReader(); ddl_folderMove.DataSource = RepValues; ddl_folderMove.DataTextField = "FolderName"; ddl_folderMove.DataValueField = "FolderId"; ddl_folderMove.DataBind(); cmd.Connection.Close(); ddl_folderMove.Items.Insert(0, "<- Select Destination Folder ->"); cmd.Connection.Dispose(); }
//// END LIST REPEATER EVENTS //// //// BEGIN LIST UPDATE PANEL EVENTS //// protected void udp_ListRepeater_PreRender(object sender, EventArgs e) { // Set Initial ListSort Session if (Session["ListSort"] == null) { Session["ListSort"] = "0"; } // Get Session Variable string sFolderId = Session["FolderId"].ToString(); string sListSort = Session["ListSort"].ToString(); // Instantiate SQL String string ListSelectSQL; // Select SQL Based on Session Variable if (sFolderId == "0" || sFolderId == null || sFolderId.Length == 0) { // Select SQL Based on Session Variable if (sListSort == "NEW") { ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_ListsMaster.ListDescription, tbl_ListsMaster.ListDate FROM tbl_ListsMaster WHERE tbl_ListsMaster.UserId ='" + FetchUser.UserID() + "' ORDER BY tbl_ListsMaster.ListDate DESC"; } else if (sListSort == "OLD") { ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_ListsMaster.ListDescription, tbl_ListsMaster.ListDate FROM tbl_ListsMaster WHERE tbl_ListsMaster.UserId ='" + FetchUser.UserID() + "' ORDER BY tbl_ListsMaster.ListDate ASC"; } else if (sListSort == "DESC") { ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_ListsMaster.ListDescription FROM tbl_ListsMaster WHERE tbl_ListsMaster.UserId ='" + FetchUser.UserID() + "' ORDER BY tbl_ListsMaster.ListName DESC"; } else //ASC or Default { ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_ListsMaster.ListDescription FROM tbl_ListsMaster WHERE tbl_ListsMaster.UserId ='" + FetchUser.UserID() + "' ORDER BY tbl_ListsMaster.ListName ASC"; } } else { // Select SQL Based on Session Variable if (sListSort == "NEW") { ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_FoldersMembers.FolderId, tbl_ListsMaster.ListDescription, tbl_ListsMaster.ListDate FROM tbl_ListsMaster, tbl_FoldersMembers WHERE tbl_FoldersMembers.FolderId ='" + sFolderId + "' AND tbl_FoldersMembers.ItemId = tbl_ListsMaster.ListId ORDER BY tbl_ListsMaster.ListDate DESC"; } else if (sListSort == "OLD") { ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_FoldersMembers.FolderId, tbl_ListsMaster.ListDescription, tbl_ListsMaster.ListDate FROM tbl_ListsMaster, tbl_FoldersMembers WHERE tbl_FoldersMembers.FolderId ='" + sFolderId + "' AND tbl_FoldersMembers.ItemId = tbl_ListsMaster.ListId ORDER BY tbl_ListsMaster.ListDate ASC"; } else if (sListSort == "DESC") { ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_FoldersMembers.FolderId, tbl_ListsMaster.ListDescription FROM tbl_ListsMaster, tbl_FoldersMembers WHERE tbl_FoldersMembers.FolderId ='" + sFolderId + "' AND tbl_FoldersMembers.ItemId = tbl_ListsMaster.ListId ORDER BY tbl_ListsMaster.ListName DESC"; } else //ASC or Default { ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_FoldersMembers.FolderId, tbl_ListsMaster.ListDescription FROM tbl_ListsMaster, tbl_FoldersMembers WHERE tbl_FoldersMembers.FolderId ='" + sFolderId + "' AND tbl_FoldersMembers.ItemId = tbl_ListsMaster.ListId ORDER BY tbl_ListsMaster.ListName ASC"; } } // Use SQL Statement to Select Records from DB SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString); SqlCommand cmd = new SqlCommand(ListSelectSQL, sqlConn); cmd.Connection.Open(); SqlDataReader RepValues; RepValues = cmd.ExecuteReader(); this.List_Repeater.DataSource = RepValues; this.List_Repeater.DataBind(); cmd.Connection.Close(); cmd.Connection.Dispose(); }
//// END FOLDER DATALIST EVENTS //// //// BEGIN FOLDER DATALIST DATABIND //// protected void BindFolderList() { // Set Initial FolderSort Session if (Session["FolderSort"] == null) { Session["FolderSort"] = "0"; } // Get Sort Order string sFolderSort = Session["FolderSort"].ToString(); // Instantiate SQL String string FolderSelectSQL; // Select SQL Based on Session Variable if (sFolderSort == "NEW") { FolderSelectSQL = "SELECT UPPER(FolderName) as FolderName, FolderId, FolderDate FROM tbl_FoldersMaster WHERE UserId ='" + FetchUser.UserID() + "' ORDER BY FolderDate DESC"; } else if (sFolderSort == "OLD") { FolderSelectSQL = "SELECT UPPER(FolderName) as FolderName, FolderId, FolderDate FROM tbl_FoldersMaster WHERE UserId ='" + FetchUser.UserID() + "' ORDER BY FolderDate ASC"; } else if (sFolderSort == "DESC") { FolderSelectSQL = "SELECT UPPER(FolderName) as FolderName, FolderId FROM tbl_FoldersMaster WHERE UserId ='" + FetchUser.UserID() + "' ORDER BY FolderName DESC"; } else //ASC or Default { FolderSelectSQL = "SELECT UPPER(FolderName) as FolderName, FolderId FROM tbl_FoldersMaster WHERE UserId ='" + FetchUser.UserID() + "' ORDER BY FolderName ASC"; } // Use SQL Statement to Select Records from DB SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString); SqlCommand cmd = new SqlCommand(FolderSelectSQL, sqlConn); cmd.Connection.Open(); SqlDataReader RepValues; RepValues = cmd.ExecuteReader(); this.Folder_Datalist.DataSource = RepValues; this.Folder_Datalist.DataBind(); cmd.Connection.Close(); cmd.Connection.Dispose(); }
protected void btn_addlist_Click(object sender, EventArgs e) { if (Page.IsValid) { // Insert List to DB and Return New ID SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString); SqlCommand cmd = new SqlCommand("INSERT INTO tbl_ListsMaster (UserId, ListName, ListDescription)VALUES(@UserId, @ListName, @ListDescription);SELECT @@IDENTITY", sqlConn); cmd.Parameters.Add("@UserId", SqlDbType.VarChar, 255).Value = FetchUser.UserID(); cmd.Parameters.Add("@ListName", SqlDbType.VarChar, 255).Value = this.tb_addlist.Text; cmd.Parameters.Add("@ListDescription", SqlDbType.VarChar, 255).Value = this.tb_list_descrip.Text; cmd.Connection.Open(); Int32 ListId = Convert.ToInt32(cmd.ExecuteScalar()); cmd.Connection.Close(); cmd.Connection.Dispose(); // Check for null folderid ie HOME folder string sFolderId = Session["FolderId"].ToString(); if (sFolderId == "0" || sFolderId == null || sFolderId.Length == 0) { // Clear Fields this.tb_addlist.Text = ""; this.tb_list_descrip.Text = ""; } // Has FolderId so Adding List to Folder SqlConnection sqlConn2 = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString); SqlCommand add = new SqlCommand("INSERT INTO tbl_FoldersMembers (FolderId, ItemId)VALUES(@FolderId, @ItemId)", sqlConn2); add.Parameters.Add("@FolderId", SqlDbType.VarChar, 255).Value = sFolderId; add.Parameters.Add("@ItemId", SqlDbType.VarChar, 255).Value = ListId; add.Connection.Open(); add.ExecuteNonQuery(); add.Connection.Close(); add.Connection.Dispose(); // Clear Fields this.tb_addlist.Text = ""; this.tb_list_descrip.Text = ""; } }