public void updateLikes(int UserID, int addID) { //Add current profile to like List <int> likeList; SqlCommand objCommand = new SqlCommand(); //objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TP_GetLikes"; objCommand.Parameters.AddWithValue("@UserId", UserID); objDB.GetDataSetUsingCmdObj(objCommand); Byte[] byteArray; //objDB.GetField("Likes", 0) != System.DBNull.Value byteArray = (Byte[])objDB.GetField("Likes", 0); BinaryFormatter deSerializer = new BinaryFormatter(); MemoryStream memStream = new MemoryStream(byteArray); try { likeList = (List <int>)deSerializer.Deserialize(memStream); } catch { likeList = new List <int>(); } likeList.Add(addID); BinaryFormatter serializer = new BinaryFormatter(); MemoryStream stream = new MemoryStream(); Byte[] Store; serializer.Serialize(stream, likeList); Store = memStream.ToArray(); objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TP_StoreLikes"; objCommand.Parameters.AddWithValue("@UserId", UserID); objCommand.Parameters.AddWithValue("@Likes", Store); objDB.DoUpdateUsingCmdObj(objCommand); }
protected void btnSaveChanges_Click(object sender, EventArgs e) { string email = txtCurrentEmail.Text; string newPhone = txtPhonenumber.Text; SqlCommand phoneCmd = new SqlCommand(); DBConnect objDB = new DBConnect(); phoneCmd.CommandType = CommandType.StoredProcedure; phoneCmd.CommandText = "dbo.TP_ResetPhonenumber"; SqlParameter inputEmail = new SqlParameter("@email", email); inputEmail.Direction = ParameterDirection.Input; inputEmail.SqlDbType = SqlDbType.NVarChar; inputEmail.Size = 50; phoneCmd.Parameters.Add(inputEmail); SqlParameter inputPhone = new SqlParameter("@newPhone", newPhone); inputPhone.Direction = ParameterDirection.Input; inputPhone.SqlDbType = SqlDbType.NVarChar; inputPhone.Size = 50; phoneCmd.Parameters.Add(inputPhone); phoneCmd.Parameters.Add("@results", SqlDbType.Int).Direction = ParameterDirection.Output; objDB.DoUpdateUsingCmdObj(phoneCmd); int result = Convert.ToInt32(phoneCmd.Parameters["@results"].Value); if (result == 1) lblMsg.Text = "Your phone number was changed succesfully!"; else if (result == 0) lblMsg.Text = "Your phone number was not changed!Please try again"; }
public bool AddCustomer() { bool added = true; DBConnect objDB = new DBConnect(); SqlCommand objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TPAddCustomer"; objCommand.Parameters.AddWithValue("@Email", Email); objCommand.Parameters.AddWithValue("@Password", Password); objCommand.Parameters.AddWithValue("@FirstName", FirstName); objCommand.Parameters.AddWithValue("@LastName", LastName); objCommand.Parameters.AddWithValue("@PhoneNumber", PhoneNumber); objCommand.Parameters.AddWithValue("@DeliveryAddress", DeliveryAddress); objCommand.Parameters.AddWithValue("@BillingAddress", BillingAddress); objCommand.Parameters.AddWithValue("@SecurityQuestion", SecurityQuestion); objCommand.Parameters.AddWithValue("@SecurityAnswer", SecurityAnswer); objCommand.Parameters.AddWithValue("@VWID", VWID); var result = objDB.DoUpdateUsingCmdObj(objCommand); if (result == -1) { added = false; } return(added); }
public bool AddAddRestaurant() { bool added = true; DBConnect objDB = new DBConnect(); SqlCommand objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TPAddRestaurant"; objCommand.Parameters.AddWithValue("@Email", Email); objCommand.Parameters.AddWithValue("@Password", Password); objCommand.Parameters.AddWithValue("@FirstName", FirstName); objCommand.Parameters.AddWithValue("@LastName", LastName); objCommand.Parameters.AddWithValue("@Cuisine", Cuisine); objCommand.Parameters.AddWithValue("@RestaurantName", RestaurantName); objCommand.Parameters.AddWithValue("@Location", Location); objCommand.Parameters.AddWithValue("@PhoneNumber", PhoneNumber); objCommand.Parameters.AddWithValue("@SecurityQuestion", SecurityQuestion); objCommand.Parameters.AddWithValue("@SecurityAnswer", SecurityAnswer); objCommand.Parameters.AddWithValue("@ImgURL", ImgURL); objCommand.Parameters.AddWithValue("@VWID", VWID); var result = objDB.DoUpdateUsingCmdObj(objCommand); if (result == -1) { added = false; } return(added); }
protected void btnSaveChanges_Click(object sender, EventArgs e) { string email = txtCurrentEmail.Text; string newName = txtNewName.Text; SqlCommand name = new SqlCommand(); DBConnect objDB = new DBConnect(); name.CommandType = CommandType.StoredProcedure; name.CommandText = "dbo.TP_ResetName"; SqlParameter inputEmail = new SqlParameter("@email", email); inputEmail.Direction = ParameterDirection.Input; inputEmail.SqlDbType = SqlDbType.NVarChar; inputEmail.Size = 50; name.Parameters.Add(inputEmail); SqlParameter inputName = new SqlParameter("@newName", newName); inputName.Direction = ParameterDirection.Input; inputName.SqlDbType = SqlDbType.NVarChar; inputName.Size = 50; name.Parameters.Add(inputName); name.Parameters.Add("@result", SqlDbType.Int).Direction = ParameterDirection.Output; objDB.DoUpdateUsingCmdObj(name); int result = Convert.ToInt32(name.Parameters["@result"].Value); if (result == 1) lblMsg.Text = "Your name was changed succesfully!"; else if (result==0) lblMsg.Text = "Your name was not changed!"; }
public Boolean AssessmentsUpdate(String fiscalYear) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "UpdateAssessments"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); SqlParameter outputParameter = new SqlParameter("@result", DbType.Int32); outputParameter.Direction = ParameterDirection.ReturnValue; objcomm.Parameters.Add(outputParameter); DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); int result = int.Parse(objcomm.Parameters["@result"].Value.ToString()); if (result == 1) { return true; } else { return false; } }
public bool AddNewCustomer(Customer newCustomer) { DBConnect objDB = new DBConnect(); SqlCommand objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "AddTPCustomer"; objCommand.Parameters.AddWithValue("@Name", newCustomer.name); objCommand.Parameters.AddWithValue("@Email", newCustomer.email ); objCommand.Parameters.AddWithValue("@password", newCustomer.password); objCommand.Parameters.AddWithValue("@address", newCustomer.shippingAddress); objCommand.Parameters.AddWithValue("@city", newCustomer.shippingAddress); objCommand.Parameters.AddWithValue("@state", newCustomer.shippingState); objCommand.Parameters.AddWithValue("@zipcode", newCustomer.shippingZipcode); //integer to determine if value was added into DB or not int result= objDB.DoUpdateUsingCmdObj(objCommand); if (!(result <= 0)) //if a new row was successsfully added { return false; } else //else the row was not added successfully { return true; } }
protected void btnConfirm_Click(object sender, EventArgs e) { string oldpass = txtOldPass.Text; string newpass1 = txtNewPass1.Text; string newpass2 = txtNewPass2.Text; if (newpass1 == newpass2) { DBConnect db = new DBConnect(); string email = Session["emailSession"].ToString(); SqlCommand command = new SqlCommand(); command.CommandType = CommandType.StoredProcedure; command.CommandText = "UpdateMerch"; command.Parameters.AddWithValue("@email", email); command.Parameters.AddWithValue("@oldPass", oldpass); command.Parameters.AddWithValue("@newPass1", newpass1); command.Parameters.AddWithValue("@newPass2", newpass2); db.DoUpdateUsingCmdObj(command); } else { Label lblerror = new Label(); lblerror.Text = "New Passwords do not match please try again"; } }
public bool AddNewMerchant() { bool added = true; DBConnect objDB = new DBConnect(); SqlCommand objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TPAddMerchants"; objCommand.Parameters.AddWithValue("@FirstName", FirstName); objCommand.Parameters.AddWithValue("@LastName", LastName); objCommand.Parameters.AddWithValue("@CompanyName", CompanyName); objCommand.Parameters.AddWithValue("@Email", Email); objCommand.Parameters.AddWithValue("@Password", Password); objCommand.Parameters.AddWithValue("@APIKey", APIKey); objCommand.Parameters.AddWithValue("@MerchantAccountID", MerchantAccountID); var result = objDB.DoUpdateUsingCmdObj(objCommand); if (result == -1) { added = false; } return(added); }
public bool NewCustomer(CustomerInformation newCustomer) { DBConnect objDB = new DBConnect(); SqlCommand objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TP_NewCustomer"; objCommand.Parameters.AddWithValue("@loginID", newCustomer.LoginID); objCommand.Parameters.AddWithValue("@password", newCustomer.Password); objCommand.Parameters.AddWithValue("@name", newCustomer.Name); objCommand.Parameters.AddWithValue("@address", newCustomer.Address); objCommand.Parameters.AddWithValue("@city", newCustomer.City); objCommand.Parameters.AddWithValue("@state", newCustomer.State); objCommand.Parameters.AddWithValue("@zipcode", newCustomer.ZipCode); //integer to determine if value was added into DB or not int result = objDB.DoUpdateUsingCmdObj(objCommand); if (!(result <= 0)) //if a new row was successsfully added { return(false); } else //else the row was not added successfully { return(true); } }
public string[] UpdateCustomer(CustomerClass fred, CreditCardClass cc, object[] stupid) { DBConnect DB = new DBConnect(); SqlCommand command = new SqlCommand(); string[] meh = new string[3]; ErrorCodes ec = new ErrorCodes(); command.CommandType = CommandType.StoredProcedure; command.CommandText = "CustomerUpdate"; command.Parameters.AddWithValue("@FirstName", fred.Firstname); command.Parameters.AddWithValue("@Address", fred.Address); command.Parameters.AddWithValue("@City", fred.City); command.Parameters.AddWithValue("@State", fred.State); command.Parameters.AddWithValue("@ZipCode", fred.ZipCode); command.Parameters.AddWithValue("@AccountBalance", cc.AccountBalance); meh[0] = (DB.DoUpdateUsingCmdObj(command) > 0) ? "true" : "false"; SqlCommand sandy = new SqlCommand(); sandy.CommandType = CommandType.StoredProcedure; sandy.CommandText = "VerifyInfo"; sandy.Parameters.AddWithValue("@CreditCardNum", cc.CardNumber); sandy.Parameters.AddWithValue("@CVV", cc.CVV); sandy.Parameters.AddWithValue("@TransAmnt", float.Parse(stupid[2].ToString())); sandy.Parameters.AddWithValue("@FirstName", fred.Firstname); SqlParameter returnParam = new SqlParameter("@RVAL", DbType.Int32); returnParam.Direction = ParameterDirection.ReturnValue; sandy.Parameters.Add(returnParam); // DataSet ds = DB.GetDataSetUsingCmdObj(sandy); DB.GetDataSetUsingCmdObj(sandy); meh[1] = sandy.Parameters["@RVAL"].Value.ToString(); meh[2] = ec.GetErrorCodeMessage(int.Parse(meh[1])); return meh; }
public bool UpdateAccountInfo(int accType, string loginID, string name, string phone, string address, string city, string state, int zipCode) { DBConnect objDB = new DBConnect(); SqlCommand objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TP_UpdateAccount"; objCommand.Parameters.AddWithValue("@AccountType", accType); objCommand.Parameters.AddWithValue("@Email", loginID); objCommand.Parameters.AddWithValue("@Name", name); objCommand.Parameters.AddWithValue("@Phone", phone); objCommand.Parameters.AddWithValue("@Address", address); objCommand.Parameters.AddWithValue("@City", city); objCommand.Parameters.AddWithValue("@State", state); objCommand.Parameters.AddWithValue("@ZipCode", zipCode); int result = objDB.DoUpdateUsingCmdObj(objCommand); if (result != -1) { return(true); } return(false); }
protected static bool updateRestaurant(Restaurant restaurant) { try { DBConnect dbConnect = new DBConnect(); SqlCommand cmd = new SqlCommand { CommandType = CommandType.StoredProcedure, CommandText = "TP_updateRestaurantUser" }; cmd.Parameters.AddWithValue("@accountID", restaurant.username); cmd.Parameters.AddWithValue("@restaurant_name", restaurant.restaurant_name); cmd.Parameters.AddWithValue("@restaurant_phone_number", restaurant.restaurant_phone_number); cmd.Parameters.AddWithValue("@restaurant_logo", restaurant.restaurant_logo); cmd.Parameters.AddWithValue("@restaurant_cuisine", restaurant.restaurant_cuisine); int rowCount = dbConnect.DoUpdateUsingCmdObj(cmd); if (rowCount == 1) { return(true); } else { return(false); } } catch (SqlException ex) { Debug.WriteLine(ex.Message + ex.StackTrace); return(false); } }
protected void btnSaveChanges_Click(object sender, EventArgs e) { if (String.IsNullOrEmpty(txtPhonenumber.Text) || String.IsNullOrEmpty(txtCurrentEmail.Text)) Page.ClientScript.RegisterStartupScript(this.GetType(), "Script", "<script> alert('All fields are required.Thank you!'); </script>"); string email = txtCurrentEmail.Text; string newPhone = txtPhonenumber.Text; SqlCommand phoneCmd = new SqlCommand(); DBConnect objDB = new DBConnect(); phoneCmd.CommandType = CommandType.StoredProcedure; phoneCmd.CommandText = "dbo.TP_ResetPhonenumber"; SqlParameter inputEmail = new SqlParameter("@email", email); inputEmail.Direction = ParameterDirection.Input; inputEmail.SqlDbType = SqlDbType.NVarChar; inputEmail.Size = 50; phoneCmd.Parameters.Add(inputEmail); SqlParameter inputPhone = new SqlParameter("@newPhone", newPhone); inputPhone.Direction = ParameterDirection.Input; inputPhone.SqlDbType = SqlDbType.NVarChar; inputPhone.Size = 50; phoneCmd.Parameters.Add(inputPhone); phoneCmd.Parameters.Add("@results", SqlDbType.Int).Direction = ParameterDirection.Output; objDB.DoUpdateUsingCmdObj(phoneCmd); int result = Convert.ToInt32(phoneCmd.Parameters["@results"].Value); if (result == 1) lblMsg.Text = "Your phone number was changed succesfully!"; else if (result == 0) lblMsg.Text = "Your phone number was not changed!Please try again"; }
protected void btnPlaceOrder_Click(object sender, EventArgs e) { List<cartItem> cartItems = new List<cartItem>(); cartItems = (List<cartItem>)Session["cart"]; DBConnect objDB = new DBConnect(); SqlCommand addPurchase = new SqlCommand(); addPurchase.CommandType = CommandType.StoredProcedure; addPurchase.CommandText = "TP_CustomerTransactions"; SqlCommand updateProdQuan = new SqlCommand(); updateProdQuan.CommandType = CommandType.StoredProcedure; updateProdQuan.CommandText = "TP_subtractProducts"; foreach(cartItem obj in cartItems) { SqlParameter prodID = new SqlParameter("@prodNum", obj.ProdNum); prodID.Direction = ParameterDirection.Input; prodID.SqlDbType = SqlDbType.Int; prodID.Size = 4; addPurchase.Parameters.Add(prodID); SqlParameter quantity = new SqlParameter("@quantity", obj.ProdQuantity); quantity.Direction = ParameterDirection.Input; prodID.SqlDbType = SqlDbType.Int; prodID.Size = 4; addPurchase.Parameters.Add(quantity); SqlParameter loginiD = new SqlParameter("@loginID", Convert.ToInt32(Session["loginId"])); loginiD.Direction = ParameterDirection.Input; loginiD.SqlDbType = SqlDbType.Int; loginiD.Size = 4; addPurchase.Parameters.Add(loginiD); SqlParameter quan = new SqlParameter("@prodNum", obj.ProdNum); quan.Direction = ParameterDirection.Input; quan.SqlDbType = SqlDbType.Int; quan.Size = 4; updateProdQuan.Parameters.Add(quan); objDB.DoUpdateUsingCmdObj(updateProdQuan); } //SqlCommand removeCart = new SqlCommand(); //updateProdQuan.CommandType = CommandType.StoredProcedure; //updateProdQuan.CommandText = "TP_removeCart"; //SqlParameter id = new SqlParameter("@custID", Convert.ToInt32(Session["loginId"])); //id.Direction = ParameterDirection.Input; //id.SqlDbType = SqlDbType.Int; //id.Size = 4; //objDB.DoUpdateUsingCmdObj(removeCart); //List<cartItem> emptyCart = new List<cartItem>(); //Session["cart"] = emptyCart; }
protected void btnSaveChanges_Click(object sender, EventArgs e) { if (String.IsNullOrEmpty(txtCurrentEmail.Text) || String.IsNullOrEmpty(txtPassword.Text) || String.IsNullOrEmpty(txtNewEmail2.Text)) Page.ClientScript.RegisterStartupScript(this.GetType(), "Script", "<script> alert('All fields are required.Thank you!'); </script>"); { string currentEmail = txtCurrentEmail.Text; string passord = txtPassword.Text; string newEmail2 = txtNewEmail2.Text; SqlCommand emailCmd = new SqlCommand(); DBConnect objDB = new DBConnect(); emailCmd.CommandType = CommandType.StoredProcedure; emailCmd.CommandText = "dbo.TP_ResetEmail"; SqlParameter inputEmail = new SqlParameter("@currentEmail", currentEmail); inputEmail.Direction = ParameterDirection.Input; inputEmail.SqlDbType = SqlDbType.NVarChar; inputEmail.Size = 50; emailCmd.Parameters.Add(inputEmail); SqlParameter inputPassword = new SqlParameter("@password", passord); inputPassword.Direction = ParameterDirection.Input; inputPassword.SqlDbType = SqlDbType.NVarChar; inputPassword.Size = 50; emailCmd.Parameters.Add(inputPassword); SqlParameter inputEmail2 = new SqlParameter("@newEmail", newEmail2); inputEmail2.Direction = ParameterDirection.Input; inputEmail2.SqlDbType = SqlDbType.NVarChar; inputEmail2.Size = 50; emailCmd.Parameters.Add(inputEmail2); emailCmd.Parameters.Add("@result", SqlDbType.Int).Direction = ParameterDirection.Output; objDB.DoUpdateUsingCmdObj(emailCmd); int result = Convert.ToInt32(emailCmd.Parameters["@result"].Value); if (result == -1) lblMsg.Text = "The password you entered is incorrect!"; else if (result == 0) { lblMsg.Text = "The new email you entered already exists."; } else { lblMsg.Text = "The email was changed succesfully."; } } }
public void saveStudent() { SqlCommand command = new SqlCommand(); command.CommandType = CommandType.StoredProcedure; command.CommandText = "NewStudent"; command.Parameters.AddWithValue("@ID", id); command.Parameters.AddWithValue("@Name", name); command.Parameters.AddWithValue("@Tuition", tuition); DBConnect DB = new DBConnect(); DB.DoUpdateUsingCmdObj(command); }
public void CreateFiscalYear(String fiscalYear) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "sp_CreateFiscalYear"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); }
public static void ExecuteUpdate(SqlCommand command) { //Open Connection DBConnect newConnection = new DBConnect(); //Execute Command newConnection.DoUpdateUsingCmdObj(command); //Close DB Connection newConnection.CloseConnection(); }
public string doSerialize(Liked liked, string userEmail) { string rVal; BinaryFormatter serializer = new BinaryFormatter(); MemoryStream memStream = new MemoryStream(); Byte[] byteArray; serializer.Serialize(memStream, liked); byteArray = memStream.ToArray(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "addLiked"; objCommand.Parameters.AddWithValue("@userEmail", userEmail); objCommand.Parameters.AddWithValue("@userLiked", byteArray); int retVal = objDB.DoUpdateUsingCmdObj(objCommand); //// Check to see whether the update was successful if (retVal > 0) { rVal = " added to liked collection"; } else { rVal = "A problem occured in storing the liked profile"; } return(rVal); }
protected void btnSaveChanges_Click(object sender, EventArgs e) { { string currentEmail = txtCurrentEmail.Text; string passord = txtPassword.Text; string newEmail2 = txtNewEmail2.Text; SqlCommand emailCmd = new SqlCommand(); DBConnect objDB = new DBConnect(); emailCmd.CommandType = CommandType.StoredProcedure; emailCmd.CommandText = "dbo.TP_ResetEmail"; SqlParameter inputEmail = new SqlParameter("@currentEmail", currentEmail); inputEmail.Direction = ParameterDirection.Input; inputEmail.SqlDbType = SqlDbType.NVarChar; inputEmail.Size = 50; emailCmd.Parameters.Add(inputEmail); SqlParameter inputPassword = new SqlParameter("@password", passord); inputPassword.Direction = ParameterDirection.Input; inputPassword.SqlDbType = SqlDbType.NVarChar; inputPassword.Size = 50; emailCmd.Parameters.Add(inputPassword); SqlParameter inputEmail2 = new SqlParameter("@newEmail", newEmail2); inputEmail2.Direction = ParameterDirection.Input; inputEmail2.SqlDbType = SqlDbType.NVarChar; inputEmail2.Size = 50; emailCmd.Parameters.Add(inputEmail2); emailCmd.Parameters.Add("@result", SqlDbType.Int).Direction = ParameterDirection.Output; objDB.DoUpdateUsingCmdObj(emailCmd); int result = Convert.ToInt32(emailCmd.Parameters["@result"].Value); if (result == -1) lblMsg.Text = "The password you entered is incorrect!"; else if (result == 0) { lblMsg.Text = "The new email you entered already exists."; } else { lblMsg.Text = "The email was changed succesfully."; } } }
protected void btnSaveChanges_Click(object sender, EventArgs e) { SqlCommand pass = new SqlCommand(); DBConnect objDB = new DBConnect(); pass.CommandType = CommandType.StoredProcedure; pass.CommandText = "dbo.TP_ResetPassword"; //string currentPassword = (string)pass.ExecuteScalar(); //if (currentPassword == txtCurrentPassword.Text) // { } //else // lblMsg.Text = "Please enter your current password again!"; string currentEmail = txtCurrentEmail.Text; string currentPassword = txtCurrentPassword.Text; string newPassword1 = txtNewPassword.Text; SqlParameter inputEmail = new SqlParameter("@email", currentEmail); inputEmail.Direction = ParameterDirection.Input; inputEmail.SqlDbType = SqlDbType.NVarChar; inputEmail.Size = 50; pass.Parameters.Add(inputEmail); SqlParameter inputPassword = new SqlParameter("@currentPass", currentPassword); inputPassword.Direction = ParameterDirection.Input; inputPassword.SqlDbType = SqlDbType.NVarChar; inputPassword.Size = 50; pass.Parameters.Add(inputPassword); SqlParameter inputPassword1 = new SqlParameter("@newPass", newPassword1); inputPassword1.Direction = ParameterDirection.Input; inputPassword1.SqlDbType = SqlDbType.NVarChar; inputPassword1.Size = 50; pass.Parameters.Add(inputPassword1); pass.Parameters.Add("@returnId", SqlDbType.Int).Direction = ParameterDirection.Output; objDB.DoUpdateUsingCmdObj(pass); int result = Convert.ToInt32(pass.Parameters["@returnId"].Value); if (result == 1) lblMsg.Text = "The password you entered is incorrect!"; else if (result == 0) lblMsg.Text = "The password was not changed."; // Response.Redirect("LoginPage.aspx"); }
protected static bool addCustomer(Customer customer, String card_num, String card_cvv, String exp_month, String exp_year, String card_zip) { if (apiService.new_customer_wallet(customer.username, card_num, card_cvv, exp_month, exp_year, card_zip) == "true") { if (checkUser(customer.username) == false) { try { DBConnect dbConnect = new DBConnect(); SqlCommand cmd = new SqlCommand { CommandType = CommandType.StoredProcedure, CommandText = "TP_createNewCustomer" }; cmd.Parameters.AddWithValue("@accountID", customer.username); cmd.Parameters.AddWithValue("@password", customer.password); cmd.Parameters.AddWithValue("@customer_flag", 1); cmd.Parameters.AddWithValue("@first_name", customer.first_name); cmd.Parameters.AddWithValue("@last_name", customer.last_name); cmd.Parameters.AddWithValue("@phone_number", customer.phone_number); cmd.Parameters.AddWithValue("@delivery_street", customer.delivery_street_address); cmd.Parameters.AddWithValue("@delivery_city", customer.delivery_city); cmd.Parameters.AddWithValue("@delivery_state", customer.delivery_state); cmd.Parameters.AddWithValue("@delivery_zip", customer.delivery_zip); SqlParameter rowsAffected = new SqlParameter("@return", DbType.Int32); rowsAffected.Direction = ParameterDirection.ReturnValue; cmd.Parameters.Add(rowsAffected); int rowCount = dbConnect.DoUpdateUsingCmdObj(cmd); if (rowCount != -1) { return(true); } else { return(false); } } catch (SqlException ex) { Debug.WriteLine("SQL Exception in creating an email."); Debug.WriteLine(ex.StackTrace); Debug.WriteLine(ex.Message); return(false); } } else { return(false); } } else { return(false); } }
protected static bool updateCustomer(Customer customer) { try { if (customer.delivery_city == null) { DBConnect dbConnect = new DBConnect(); SqlCommand cmd = new SqlCommand { CommandType = CommandType.StoredProcedure, CommandText = "TP_updateCustomerUser" }; cmd.Parameters.AddWithValue("@accountID", customer.username); cmd.Parameters.AddWithValue("@first_name", customer.first_name); cmd.Parameters.AddWithValue("@last_name", customer.last_name); cmd.Parameters.AddWithValue("@phone_number", customer.phone_number); int rowCount = dbConnect.DoUpdateUsingCmdObj(cmd); if (rowCount == 1) { return(true); } else { return(false); } } else { DBConnect dbConnect = new DBConnect(); SqlCommand cmd = new SqlCommand { CommandType = CommandType.StoredProcedure, CommandText = "TP_updateCustomerUserDeliveryInfo" }; cmd.Parameters.AddWithValue("@accountID", customer.username); cmd.Parameters.AddWithValue("@delivery_street_address", customer.delivery_street_address); cmd.Parameters.AddWithValue("@delivery_city", customer.delivery_city); cmd.Parameters.AddWithValue("@delivery_state", customer.delivery_state); cmd.Parameters.AddWithValue("@delivery_zip", customer.delivery_zip); int rowCount = dbConnect.DoUpdateUsingCmdObj(cmd); if (rowCount == 1) { return(true); } else { return(false); } } } catch (SqlException ex) { Debug.WriteLine(ex.Message + ex.StackTrace); return(false); } }
public void insertIntoPurchase(string email, string CardNum, string ProductID) { //Email, CardNum, SaleTotal, Products DBConnect objdb = new DBConnect(); SqlCommand sqlCommand = new SqlCommand(); sqlCommand.CommandType = CommandType.StoredProcedure; sqlCommand.CommandText = "TP_InsertIntoPurchase"; sqlCommand.Parameters.AddWithValue("@email", email); sqlCommand.Parameters.AddWithValue("@CardNum", CardNum); //sqlCommand.Parameters.AddWithValue("@SaleTotal", SaleTotal); sqlCommand.Parameters.AddWithValue("@products", ProductID); objdb.DoUpdateUsingCmdObj(sqlCommand); // }
//Register Merchant Button protected void btnContinue_Click(object sender, EventArgs e) { DBConnect DB = new DBConnect(); Register register = new Register(); Merchant newMerchant = new Merchant(); newMerchant.groupName = txtName.Text; newMerchant.email = txtEmail.Text; newMerchant.address = txtAddress.Text; newMerchant.url = txtURL.Text; SqlCommand command = new SqlCommand(); command.CommandType = CommandType.StoredProcedure; command.CommandText = "RegisterMerchant"; command.Parameters.AddWithValue("@GroupName", newMerchant.groupName); command.Parameters.AddWithValue("@Email", newMerchant.email); command.Parameters.AddWithValue("@Address", newMerchant.address); command.Parameters.AddWithValue("@URL", newMerchant.url); DB.DoUpdateUsingCmdObj(command); DB = new DBConnect(); SqlCommand key = new SqlCommand(); key.CommandType = CommandType.StoredProcedure; key.CommandText = "InsertKey"; key.Parameters.AddWithValue("@GroupName", newMerchant.groupName); DataSet ds = DB.GetDataSetUsingCmdObj(key); string apikey = ds.Tables[0].Rows[0]["APIKey"].ToString(); lblGeneralError.Text = "Your APIKey is " + apikey; //Stored procedure to insert new merchant into a merchant table //if "Remember Me" is checked, store userName in cookie //if (chkbxRemeberMe.Checked) //{ // HttpCookie emailCookie = new HttpCookie("Login_Cookie");//cookie's name // emailCookie.Values["email"] = txtEmail.Text; //set cookies value // emailCookie.Values["LastVisited"] = DateTime.Now.ToString(); // emailCookie.Expires = DateTime.Now.AddYears(1); // Response.Cookies.Add(emailCookie); //} //else //{ // //remove user's email from username textbox // Response.Cookies.Remove("mycookie"); //} //Response.Redirect("Login.aspx"); }
public void AddAdmin(AdminObject admin) { DBConnect objDB = new DBConnect(); SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "sp_addadmin"; objcomm.Parameters.Add("@tuid", admin.tuid); objcomm.Parameters.Add("@firstName", admin.firstName); objcomm.Parameters.Add("@lastName", admin.lastName); objcomm.Parameters.Add("@department", admin.department); objcomm.Parameters.Add("@accessLevel", admin.accessLevel); objDB.DoUpdateUsingCmdObj(objcomm); }
public bool HelloWorld(CreditCardClass cc, CustomerClass arthur) { DBConnect DB = new DBConnect(); SqlCommand command = new SqlCommand(); command.CommandType = CommandType.StoredProcedure; command.CommandText = "AddCard"; command.Parameters.AddWithValue("@CreditCardNumber", cc.CardNumber); command.Parameters.AddWithValue("@CVV", cc.CVV); command.Parameters.AddWithValue("@AccountNumber", cc.AccountNumber); command.Parameters.AddWithValue("@CreditLimit", cc.CreditLimit); command.Parameters.AddWithValue("@AccountBalance", cc.AccountBalance); command.Parameters.AddWithValue("@FirstName", arthur.Firstname); command.Parameters.AddWithValue("@LastName", arthur.LastName); return (DB.DoUpdateUsingCmdObj(command) > 0) ? true : false; }
public int CreateWallet() { SqlCommand objCommand = new SqlCommand(); int walletID = 0; //store procedure objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = ""; //objCommand.Parameters.AddWithValue(""); int retVal = dbConnect.DoUpdateUsingCmdObj(objCommand); return(retVal); }
protected static bool addRestaurantUser(Restaurant restaurant, String checking_account_num, String checking_account_routing) { if (apiService.new_restaurant_wallet(restaurant.username, checking_account_num, checking_account_routing) == "true") { if (checkUser(restaurant.username) == false) { try { DBConnect dBConnect = new DBConnect(); SqlCommand cmd = new SqlCommand { CommandType = CommandType.StoredProcedure, CommandText = "TP_createNewRestaurantUser" }; cmd.Parameters.AddWithValue("@accountID", restaurant.username); cmd.Parameters.AddWithValue("@password", restaurant.password); cmd.Parameters.AddWithValue("@customer_flag", restaurant.customer_flag); cmd.Parameters.AddWithValue("@restaurant_name", restaurant.restaurant_name); cmd.Parameters.AddWithValue("@restaurant_phone_number", restaurant.restaurant_phone_number); cmd.Parameters.AddWithValue("@restaurant_logo", restaurant.restaurant_logo); cmd.Parameters.AddWithValue("@restaurant_cuisine", restaurant.restaurant_cuisine); int rowCount = dBConnect.DoUpdateUsingCmdObj(cmd); if (rowCount != -1) { return(true); } else { return(false); } } catch (SqlException ex) { Debug.WriteLine("Sql exception in creating a user."); Debug.WriteLine(ex.Message + ex.StackTrace); return(false); } } else { return(false); } } else { return(false); } }
public bool EmptyCart(int id) { DBConnect objDB = new DBConnect(); SqlCommand objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TP_EmptyCart"; objCommand.Parameters.AddWithValue("@CustomerID", id); int result = objDB.DoUpdateUsingCmdObj(objCommand); if (result != -1) { return(true); } return(false); }
public bool UpdateCC(int cardID, string cardNumber, string expiration) { DBConnect objDB = new DBConnect(); SqlCommand objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TP_UpdateCC"; objCommand.Parameters.AddWithValue("@CardID", cardID); objCommand.Parameters.AddWithValue("@CardNumber", cardNumber); objCommand.Parameters.AddWithValue("@Expiration", expiration); int result = objDB.DoUpdateUsingCmdObj(objCommand); if (result != -1) { return(true); } return(false); }
public bool NewPasswordFromForgot(string username, string userType, string password, string password2) { DBConnect objDB = new DBConnect(); SqlCommand objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TP_NewPWFromForgot"; objCommand.Parameters.AddWithValue("@LoginID", username); objCommand.Parameters.AddWithValue("@AccountType", userType); objCommand.Parameters.AddWithValue("@OldPassword", password); objCommand.Parameters.AddWithValue("@NewPassword", password2); int result = objDB.DoUpdateUsingCmdObj(objCommand); if (result != -1) { return(true); } return(false); }
protected void btnRegister_Click(object sender, EventArgs e) { string title = ""; string name = ddStudentSelect.SelectedItem.Text; int studentID = int.Parse(ddStudentSelect.SelectedValue); int checkedBoxCount = 0; for (int row = 0; row < gvCourses.Rows.Count; row++) { CheckBox CBox; CBox = (CheckBox)gvCourses.Rows[row].FindControl("cbSelectCourse"); if (CBox.Checked) { // string courseCRN = gvCourses.Rows[row].Cells[1].Text; int crn = int.Parse(gvCourses.Rows[row].Cells[1].Text); float price = 1000 * int.Parse(gvCourses.Rows[row].Cells[9].Text); title = gvCourses.Rows[row].Cells[2].Text; Course c = new Course(crn, title, int.Parse(gvCourses.Rows[row].Cells[3].Text), gvCourses.Rows[row].Cells[4].Text, gvCourses.Rows[row].Cells[5].Text, gvCourses.Rows[row].Cells[6].Text, gvCourses.Rows[row].Cells[7].Text, gvCourses.Rows[row].Cells[8].Text, int.Parse(gvCourses.Rows[row].Cells[9].Text), int.Parse(gvCourses.Rows[row].Cells[11].Text)); SqlCommand command = new SqlCommand(); command.CommandType = CommandType.StoredProcedure; command.CommandText = "CourseRegistration"; command.Parameters.AddWithValue("@CRN", crn); command.Parameters.AddWithValue("@StudentID", studentID); command.Parameters.AddWithValue("@Name", name); command.Parameters.AddWithValue("@Title", title); command.Parameters.AddWithValue("@Price", price); DBConnect DB = new DBConnect(); DB.DoUpdateUsingCmdObj(command); if (c.DecrementSeats() == -1) { gvCourses.Rows[row].Cells[0].Enabled = false; } c.DecrementSeats(); rebind(); checkedBoxCount++; } } }
protected static String[] generateTokens(String username) { try { String[] cookie = new string[3]; RNGCryptoServiceProvider provider = new RNGCryptoServiceProvider(); Byte[] ident = new Byte[16]; Byte[] validator = new Byte[64]; DateTime currentDTplus30 = DateTime.Now.AddDays(30); provider.GetNonZeroBytes(ident); provider.GetNonZeroBytes(validator); cookie[0] = Convert.ToBase64String(ident); cookie[1] = Convert.ToBase64String(validator); cookie[2] = Convert.ToString(currentDTplus30); DBConnect dBConnect = new DBConnect(); SqlCommand token_gen_cmd = new SqlCommand { CommandType = CommandType.StoredProcedure, CommandText = "TP_createNewAccountRemToken" }; token_gen_cmd.Parameters.AddWithValue("@accountID", username); token_gen_cmd.Parameters.AddWithValue("@tokenIdent", Convert.ToBase64String(ident)); token_gen_cmd.Parameters.AddWithValue("@tokenValidator", Convert.ToBase64String(SHA512.Create().ComputeHash((validator)))); token_gen_cmd.Parameters.AddWithValue("@tokenExpiration", currentDTplus30); int rowCount = dBConnect.DoUpdateUsingCmdObj(token_gen_cmd); if (rowCount != -1 && rowCount == 1) { return(cookie); } else { return(null); } } catch (Exception ex) { Debug.WriteLine("Error in token generation"); Debug.WriteLine(ex.StackTrace); Debug.WriteLine(ex.Message); return(null); } }
protected void btnSave_Click(object sender, EventArgs e) { DBConnect db = new DBConnect(); string name = txtMerchName.Text; string addres = txtAddress.Text; string url = txtUrl.Text; string email = Session["emailSession"].ToString(); SqlCommand command = new SqlCommand(); command.CommandType = CommandType.StoredProcedure; command.CommandText = "UpdateMerch"; command.Parameters.AddWithValue("@email", email); command.Parameters.AddWithValue("@address", addres); command.Parameters.AddWithValue("@name", name); command.Parameters.AddWithValue("@url", url); db.DoUpdateUsingCmdObj(command); txtAddress.Text = ""; txtEmail.Text = ""; txtMerchName.Text = ""; txtUrl.Text = ""; this.Visible = false; }
public bool ChangePassword(int accountType, string loginID, string oldPassword, string newPassword) { DBConnect objDB = new DBConnect(); SqlCommand objCommand = new SqlCommand(); objCommand.CommandType = CommandType.StoredProcedure; objCommand.CommandText = "TP_ChangePassword"; objCommand.Parameters.AddWithValue("@AccountType", accountType); objCommand.Parameters.AddWithValue("@LoginID", loginID); objCommand.Parameters.AddWithValue("@OldPassword", oldPassword); objCommand.Parameters.AddWithValue("@NewPassword", newPassword); int result = objDB.DoUpdateUsingCmdObj(objCommand); if (result != -1) { return(true); } return(false); }
protected static bool updateUser(User user) { try { DBConnect dbConnect = new DBConnect(); SqlCommand cmd = new SqlCommand { CommandType = CommandType.StoredProcedure, CommandText = "TP_updateUser" }; cmd.Parameters.AddWithValue("@accountID", user.username); cmd.Parameters.AddWithValue("@password", user.password); int rowCount = dbConnect.DoUpdateUsingCmdObj(cmd); if (rowCount == 1) { return(true); } else { return(false); } } catch (SqlException ex) { Debug.WriteLine(ex.Message + ex.StackTrace); return(false); } }
public void UpdateRevenue(String fiscalYear, String term, String gradUndergrad, String grossExported, String rate, String CHG) { DataSet ds = new DataSet(); SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "UpdateRevenue"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); objcomm.Parameters.Add("@term", term); objcomm.Parameters.Add("@gradUndergrad", gradUndergrad); objcomm.Parameters.Add("@grossExported", grossExported); objcomm.Parameters.Add("@CHG", CHG); objcomm.Parameters.Add("@rate", rate); DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); }
public void UpdateNonCompensationExpenduters(String fiscalYear, String expenseType, String accountNumber, String budget) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "UpdateNonCompensationExpend"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); objcomm.Parameters.Add("@expenseType", expenseType); objcomm.Parameters.Add("@accountNumber", accountNumber); if (budget != "") { objcomm.Parameters.Add("@budget", budget); } DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); }
public void UpdateIntoTuitionRevenue(String fiscalYear, String term, String grossExported, String graduateUndergraduate, String chg, String rate) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "UpdateCHG"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); objcomm.Parameters.Add("@term", term); objcomm.Parameters.Add("@grossExported", grossExported); objcomm.Parameters.Add("@graduateUndergraduate", graduateUndergraduate); if (chg != "") { objcomm.Parameters.Add("@chg", chg); } if (rate != "") { objcomm.Parameters.Add("@rate", rate); } DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); }
public void doUpdate() { objDB.DoUpdateUsingCmdObj(objCmd); }
public void DeleteExpendetures() { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "sp_deleteexpendetures"; DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); }
public void UpdateAssessment(String fiscalYear, String graduateUndergraduate, String assessment, String rate) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "UpdateAssessment"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); objcomm.Parameters.Add("@graduateUndergraduate", graduateUndergraduate); objcomm.Parameters.Add("@assessment", assessment); objcomm.Parameters.Add("@rate", rate); DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); }
public void InsertCompensationExpenduters(String category, String fiscalYear, String expenseType, String accountNumber, String budget, String fringeBenefitRate) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "InsertCompensationExpenduters"; objcomm.Parameters.Add("@category", category); objcomm.Parameters.Add("@fiscalYear", fiscalYear); objcomm.Parameters.Add("@expenseType", expenseType); objcomm.Parameters.Add("@accountNumber", accountNumber); if (budget != "") { objcomm.Parameters.Add("@budget", budget); } if (fringeBenefitRate != "") { objcomm.Parameters.Add("@fringeBenefitRate", fringeBenefitRate); } DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); }
public void UpdateAllocatedCosts(String fiscalYear, String costDriver, String metricType, String rate, String totalMetric, String metrics, String costToAllocate) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "UpdateAllocatedCosts"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); objcomm.Parameters.Add("@costDriver", costDriver); objcomm.Parameters.Add("@metricType", metricType); if (rate != "") { objcomm.Parameters.Add("@rate", rate); } if (totalMetric != "") { objcomm.Parameters.Add("@totalMetric", totalMetric); } if (metrics != "") { objcomm.Parameters.Add("@metrics", metrics); } if (costToAllocate != "") { objcomm.Parameters.Add("@costToAllocate", costToAllocate); } DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); }
public void InsertDifferentialRevenue(String fiscalYear, String graduateUndergraduate, String chg, String rate) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "InsertDifferentialRevenue"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); objcomm.Parameters.Add("@graduateUndergraduate", graduateUndergraduate); if (chg != "") { objcomm.Parameters.Add("@numberStudentsChg", chg); } if (rate != "") { objcomm.Parameters.Add("@rate", rate); } DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); }
public Boolean NonCompensationExpensesUpdate(String fiscalYear, String expenseType, double budget) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "NonCompensationExpensesUpdate"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); objcomm.Parameters.Add("@expenseType", expenseType); objcomm.Parameters.Add("@budget", budget); SqlParameter outputParameter = new SqlParameter("@result", DbType.Int32); outputParameter.Direction = ParameterDirection.ReturnValue; objcomm.Parameters.Add(outputParameter); DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); int result = int.Parse(objcomm.Parameters["@result"].Value.ToString()); if (result == 1) { return true; } else { return false; } }
public Boolean DifferentialRevenueUpdate(String fiscalYear, String undergradGrad, double rate, double numberStudentsCHG) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "UpdateDifferentialRevenue"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); objcomm.Parameters.Add("@graduateUndergraduate", undergradGrad); objcomm.Parameters.Add("@rate", rate); objcomm.Parameters.Add("@numberStudentsCHG", numberStudentsCHG); SqlParameter outputParameter = new SqlParameter("@result", DbType.Int32); outputParameter.Direction = ParameterDirection.ReturnValue; objcomm.Parameters.Add(outputParameter); DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); int result = int.Parse(objcomm.Parameters["@result"].Value.ToString()); if (result == 1) { return true; } else { return false; } }
public void RevenueSummaryInsert(String fiscalYear) { SqlCommand objcomm = new SqlCommand(); objcomm.CommandType = CommandType.StoredProcedure; objcomm.CommandText = "InsertRevenueExpenseSummary"; objcomm.Parameters.Add("@fiscalYear", fiscalYear); //SqlParameter outputParameter = new SqlParameter("@result", DbType.Int32); //outputParameter.Direction = ParameterDirection.ReturnValue; //objcomm.Parameters.Add(outputParameter); DBConnect objDB = new DBConnect(); objDB.DoUpdateUsingCmdObj(objcomm); //int result = int.Parse(objcomm.Parameters["@result"].Value.ToString()); //if (result == 1) //{ // return true; //} //else //{ // return false; //} }