public void update_products(string prod_id, string name_prod, int quant, string price, int id_cat, byte[] img)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
dal.open_Connection();
BL.Product prd = new BL.Product();
SqlParameter[] paramter = new SqlParameter[6];
paramter[0] = new SqlParameter("@ID", SqlDbType.NChar, 50);
paramter[0].Value = prod_id;
paramter[1] = new SqlParameter("@Name_prod", SqlDbType.NVarChar, 50);
paramter[1].Value = name_prod;
paramter[2] = new SqlParameter("@quantity", SqlDbType.NChar, 10);
paramter[2].Value = quant;
paramter[3] = new SqlParameter("@image", SqlDbType.Image);
paramter[3].Value = img;
paramter[4] = new SqlParameter("@ID_Cat", SqlDbType.Int);
paramter[4].Value = id_cat;;
paramter[5] = new SqlParameter("@price", SqlDbType.VarChar, 50);
paramter[5].Value = price;
dal.ExecuteCommand("update_product", paramter);
dal.Close_Connection();
}
//====================================================
//member functions
public void New_Cust()
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
dal.open_Connection();
SqlParameter[] param = new SqlParameter[7];
param[0] = new SqlParameter("@first", SqlDbType.VarChar, 50);
param[0].Value = first;
param[1] = new SqlParameter("@last", SqlDbType.VarChar, 50);
param[1].Value = last;
param[2] = new SqlParameter("@tele", SqlDbType.NChar, 20);
param[2].Value = phone;
param[3] = new SqlParameter("@email", SqlDbType.VarChar, 50);
param[3].Value = emai;
param[4] = new SqlParameter("@img", SqlDbType.Image);
param[4].Value = img;
param[5] = new SqlParameter("@state", SqlDbType.VarChar, 50);
param[5].Value = stat;
param[6] = new SqlParameter("@Pay", SqlDbType.VarChar, 50);
param[6].Value = pment;
dal.ExecuteCommand("new_customer", param);
dal.Close_Connection();
}
public void Add_Order(int order_id, DateTime order_date, int cust_id, string descrip, string sales_man, int Delivery_man, string total)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
dal.open_Connection();
BL.Product prd = new BL.Product();
SqlParameter[] paramter = new SqlParameter[7];
paramter[0] = new SqlParameter("@ID_order", SqlDbType.Int);
paramter[0].Value = order_id;
paramter[1] = new SqlParameter("@order_date", SqlDbType.Date);
paramter[1].Value = order_date;
paramter[2] = new SqlParameter("@Customer_id", SqlDbType.Int);
paramter[2].Value = cust_id;
paramter[3] = new SqlParameter("@Description_order", SqlDbType.VarChar, 250);
paramter[3].Value = descrip;
paramter[4] = new SqlParameter("@sales_man", SqlDbType.VarChar, 50);
paramter[4].Value = sales_man;
paramter[5] = new SqlParameter("@Delivery_man", SqlDbType.Int);
paramter[5].Value = Delivery_man;
paramter[6] = new SqlParameter("@total", SqlDbType.VarChar, 50);
paramter[6].Value = total;
dal.ExecuteCommand("Add_product", paramter);
dal.Close_Connection();
}
public DataTable Get_allprdcts()
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
Dt = dal.Read_Data("select_all_prdcts", null);
return(Dt);
}
public DataTable Get_Last_order()
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
Dt = dal.Read_Data("Get_last_order_ID", null);
return(Dt);
}
public DataTable Get_Categories()
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
Dt = dal.Read_Data("Get_Categories", null);
return(Dt);
}
public DataTable Get_Customers()
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
Dt = dal.Read_Data("Get_All_Customers", null);
return(Dt);
}
public void delete_Cust()
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
dal.open_Connection();
SqlParameter[] par = new SqlParameter[1];
par[0] = new SqlParameter("@ID", SqlDbType.Int);
par[0].Value = id;
dal.ExecuteCommand("delete_customer", par);
dal.Close_Connection();
}
public DataTable Search(string word)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
SqlParameter[] par = new SqlParameter[1];
par[0] = new SqlParameter("@word", SqlDbType.VarChar, 50);
par[0].Value = word;
Dt = dal.Read_Data("Search", par);
return(Dt);
}
public DataTable Delete(string ID)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
SqlParameter[] par = new SqlParameter[1];
par[0] = new SqlParameter("@ID", SqlDbType.NChar, 50);
par[0].Value = ID;
Dt = dal.Read_Data("mydel", par);
return(Dt);
}
public DataTable GET_BELLS(string word)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
SqlParameter[] par = new SqlParameter[1];
par[0] = new SqlParameter("@WORD", SqlDbType.VarChar, 50);
par[0].Value = word;
Dt = dal.Read_Data("SEARCH_BELLS", par);
return(Dt);
}
public DataTable GET_Details_return(int id)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
SqlParameter[] par = new SqlParameter[1];
par[0] = new SqlParameter("@id_order", SqlDbType.Int);
par[0].Value = id;
Dt = dal.Read_Data("GET_Details_Order_return", par);
return(Dt);
}
public DataTable find_cust( )
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
SqlParameter[] par = new SqlParameter[1];
par[0] = new SqlParameter("@id", SqlDbType.Int);
par[0].Value = id;
Dt = dal.Read_Data("find_customer", par);
return(Dt);
}
public void Delete_Bell(int id_order)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
dal.open_Connection();
SqlParameter[] par = new SqlParameter[1];
par[0] = new SqlParameter("@id_order", SqlDbType.Int);
par[0].Value = id_order;
dal.ExecuteCommand("delete_bell", par);
dal.Close_Connection();
}
public DataTable get_image(string ID)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
SqlParameter[] par = new SqlParameter[1];
par[0] = new SqlParameter("@ID", SqlDbType.NChar, 10);
par[0].Value = ID;
Dt = dal.Read_Data("get_my_imag", par);
dal.Close_Connection();
return(Dt);
}
public void Delete_User()
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
dal.open_Connection();
BL.Product prd = new BL.Product();
SqlParameter[] paramter = new SqlParameter[1];
paramter[0] = new SqlParameter("@user_id", SqlDbType.NVarChar, 50);
paramter[0].Value = user;
dal.ExecuteCommand("delete_User", paramter);
dal.Close_Connection();
}
public DataTable Return_Quantity(string ID, int quant, int order_id)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
SqlParameter[] par = new SqlParameter[3];
par[0] = new SqlParameter("@product_id", SqlDbType.NChar, 10);
par[0].Value = ID;
par[1] = new SqlParameter("@quantity", SqlDbType.Int);
par[1].Value = quant;
par[2] = new SqlParameter("@id_order", SqlDbType.Int);
par[2].Value = order_id;
Dt = dal.Read_Data("return_product", par);
return(Dt);
}
public bool Find_ID(string ID)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
SqlParameter[] par = new SqlParameter [1];
par[0] = new SqlParameter("@ID", SqlDbType.VarChar, 50);
par[0].Value = ID;
Dt = dal.Read_Data("Find_ID", par);
if (Dt.Rows.Count > 0)
{
return(false);
}
return(true);
}
//Method to check authentication
public DataTable authentication_login(string UserName, string password)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
SqlParameter [] para = new SqlParameter [2];
para[0] = new SqlParameter("@ID", SqlDbType.NVarChar, 50);
para[0].Value = UserName;
para[1] = new SqlParameter("@Password", SqlDbType.NVarChar, 50);
para[1].Value = password;
DataTable Dt = new DataTable();
Dt = dal.Read_Data("Loging_info", para);
dal.Close_Connection();
return(Dt);
}
public bool Check_Quantity(string ID, int quant)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
DataTable Dt = new DataTable();
SqlParameter[] par = new SqlParameter[2];
par[0] = new SqlParameter("@id_prod", SqlDbType.NChar, 10);
par[0].Value = ID;
par[1] = new SqlParameter("@quant", SqlDbType.Int);
par[1].Value = quant;
Dt = dal.Read_Data("check_quantity", par);
if (Dt.Rows.Count > 0)
{
return(true);
}
return(false);
}
//==========================================================
// member functions
public void Add_User()
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
dal.open_Connection();
BL.Product prd = new BL.Product();
SqlParameter[] paramter = new SqlParameter[4];
paramter[0] = new SqlParameter("@user_id", SqlDbType.NVarChar, 50);
paramter[0].Value = user;
paramter[1] = new SqlParameter("@password", SqlDbType.NVarChar, 50);
paramter[1].Value = password;
paramter[2] = new SqlParameter("@state", SqlDbType.NChar, 10);
paramter[2].Value = state;
paramter[3] = new SqlParameter("@Fullname", SqlDbType.VarChar, 50);
paramter[3].Value = fullname;
dal.ExecuteCommand("ADD_USER", paramter);
dal.Close_Connection();
}
public void Add_products_order(string id_prod, int order_ID, string quantiy, string price, double discount, string amount)
{
DAL.Data_Access_Layer dal = new DAL.Data_Access_Layer();
dal.open_Connection();
BL.Product prd = new BL.Product();
SqlParameter[] paramter = new SqlParameter[6];
paramter[0] = new SqlParameter("@ID_PROD", SqlDbType.NChar, 10);
paramter[0].Value = id_prod;
paramter[1] = new SqlParameter("@ID_ORDER", SqlDbType.Int);
paramter[1].Value = order_ID;
paramter[2] = new SqlParameter("@quantity", SqlDbType.NChar, 10);
paramter[2].Value = quantiy;
paramter[3] = new SqlParameter("@Price", SqlDbType.VarChar, 50);
paramter[3].Value = price;
paramter[4] = new SqlParameter("@discount", SqlDbType.Float);
paramter[4].Value = discount;
paramter[5] = new SqlParameter("@Amount", SqlDbType.VarChar, 50);
paramter[5].Value = amount;
dal.ExecuteCommand("Add_Order_products", paramter);
dal.Close_Connection();
}
