protected void Submit_Click(object sender, EventArgs e)
{
/*
* Searches the user table for a matching user name and password
* Populates the user object and saves it in the Session
* Creates a shopping cart object and saves it in the Session
* If user is ADMIN, enable Admin link on Master page
*/
UserAcct user = new UserAcct();
ShoppingCart cart = new ShoppingCart();
DataView dv;
dv = (DataView)sqldsSubmit.Select(DataSourceSelectArguments.Empty);
try
{
user.UserID = (int)dv.Table.Rows[0][0];
user.Name = (string)dv.Table.Rows[0][1];
user.Role = (string)dv.Table.Rows[0][2];
user.Email = (string)dv.Table.Rows[0][3];
Session["User"] = user;
Session["Cart"] = cart;
Master.enableLogout();
if (user.Role == "admin")
{
Master.enableAdmin();
}
Response.Redirect("products.aspx");
}
catch
{
Label3.Text = "Invalid Login, please try again!";
}
}
protected void Button1_Click(object sender, EventArgs e)
{
int UserID = 0;
int TransID = getTransID();
//get user object from session and save userid to be used later when saving transaction information to db
UserAcct user = new UserAcct();
user = (UserAcct)Session["User"];
if (user == null)
{
Response.Redirect("login.aspx");
}
else
{
UserID = user.UserID;
}
//get shopping cart from Session, redirect to products page if it is empty
ShoppingCart sc = new ShoppingCart();
sc = (ShoppingCart)Session["Cart"];
if (sc == null)
{
Response.Redirect("products.aspx");
}
else
{
//if there are items in the shopping cart
if (sc.cartCount() > 0)
{
foreach (CartItem ci in sc.getList())
{
//populate insert parameters with product data, userID and transactionID
SqlDataSource1.InsertParameters.Add("UserID", UserID.ToString());
SqlDataSource1.InsertParameters.Add("ProdID", ci.ID.ToString());
SqlDataSource1.InsertParameters.Add("Date", DateTime.Now.ToString());
SqlDataSource1.InsertParameters.Add("ProdPrice", ci.Price.ToString());
SqlDataSource1.InsertParameters.Add("Quanity", ci.QTY.ToString());
SqlDataSource1.InsertParameters.Add("TransID", TransID.ToString());
SqlDataSource1.Insert();
//clear insertparameters array so that that parameters can be added for next item onlist
SqlDataSource1.InsertParameters.Clear();
}
}
}
}
protected void Page_Load(object sender, EventArgs e)
{
/*
* Loads the user object from the session variable, makes sure that it exists, calls
* LoginStatus method on Master page to display current login status
*/
UserAcct user = new UserAcct();
user = (UserAcct)Session["User"];
if (user == null)
{
//Requires <%@ MasterType virtualPath="~/Site1.master"%> directive in Login.aspx
Master.LoginStatus();
}
else
{
Master.LoginStatus();
}
}
public void LoginStatus()
{
//Verifies the User object exists and updates labels with user name and status
UserAcct user = new UserAcct();
user = (UserAcct)Session["User"];
if (user == null)
{
lblLoginStatus.Text = "" + "NOT Logged In";
}
else
{
lblLoginStatus.Text = user.Name + ": " + "Logged In";
hlLogout.Visible = true;
//if User is Admin, ebable the ADMIN link
if (user.Role == "admin")
{
hlAdmin.Visible = true;
}
}
}
