private void delete_records() { int row_affected = 0; SqlConnection connect = new SqlConnection(Program.constring); connect.Open(); string deleteQry = "delete from [User] where [Username]=@uname"; SqlCommand cmd = new SqlCommand(deleteQry, connect); cmd.Parameters.Add(new SqlParameter("@uname", SqlDbType.VarChar)).Value = UserDel.Text; row_affected = cmd.ExecuteNonQuery(); if (row_affected > 0) { MessageBox.Show("Użytkownik został usunięty..!", "Delete Record", MessageBoxButtons.OK, MessageBoxIcon.Information); Autocomplete(); UserDel.Clear(); } else { MessageBox.Show("Brak użytkowników o takim loginie", "Delete Record", MessageBoxButtons.OK, MessageBoxIcon.Information); UserDel.Clear(); Autocomplete(); } }
public int DelUsr([FromBody] UserDel uDel) { /* * Deletes user based on user id */ string userEmail = "empty"; int UserCount = 0; //Connect and retrieve data string CS = ConfigurationManager.ConnectionStrings["Fordonskontroll"].ConnectionString; using (SqlConnection con = new SqlConnection(CS)) { SqlCommand cmd = new SqlCommand("select * from del_Users where del_ID=" + uDel.User, con); con.Open(); SqlDataReader rdr = cmd.ExecuteReader(); while (rdr.Read()) { userEmail = rdr["del_User"].ToString(); } con.Close(); } StringBuilder gpReal = new StringBuilder(); gpReal.Append(userEmail); gpReal.Append(uDel.pass); gpReal.Append(uDel.pass); //Create pass that will be stored in the database string passForDB; using (MD5 md5HashReal = MD5.Create()) { passForDB = GetMd5Hash(md5HashReal, gpReal.ToString()); } using (SqlConnection conB = new SqlConnection(CS)) { SqlCommand cmdB = new SqlCommand("select count(*) as UserCount from del_Users where del_ID=" + uDel.User + " and del_Pass = '******'", conB); conB.Open(); SqlDataReader rdr = cmdB.ExecuteReader(); while (rdr.Read()) { UserCount = Convert.ToInt32(rdr["UserCount"]); } conB.Close(); } if (UserCount == 1) { using (SqlConnection conA = new SqlConnection(CS)) { SqlCommand cmdA = new SqlCommand("delete from del_Users where del_User = @del_User", conA); SqlParameter paramA = new SqlParameter("@del_User", uDel.idCall); cmdA.Parameters.Add(paramA); conA.Open(); SqlDataReader rdr = cmdA.ExecuteReader(); } } return(0); }