public bool themToChuc(AjaxPro.JavaScriptArray param) { try { SqlConnection sqlCon = new SqlConnection(HttpContext.Current.Session.GetConnectionString2()); sqlCon.Open(); SqlCommand cmd = new SqlCommand("INSERT INTO tblDMToChuc(maToChucpr,tenToChuc,ngungSD,maNhomToChucpr_sd,diaChi,maSoThue,dienThoai,Fax,Email,nguoiDaiDien,chucVuDD,nguoiLienHe,chucVuLH,dienThoaiLH,maDonVipr_sd,nguoiThaoTac,ngayThaotac)" + " VALUES(@maToChucpr,@tenToChuc,@ngungSD,@maNhomToChucpr_sd,@diaChi,@maSoThue,@dienThoai,@Fax,@Email,@nguoiDaiDien,@chucVuDD,@nguoiLienHe,@chucVuLH,@dienThoaiLH,@maDonVipr_sd,@nguoiThaoTac,@ngayThaotac)", sqlCon); cmd.Parameters.Add(new SqlParameter("@maToChucpr", param[0].ToString().Trim())); cmd.Parameters.Add(new SqlParameter("@tenToChuc", param[1].ToString())); cmd.Parameters.Add(new SqlParameter("@ngungSD", param[2].ToString())); cmd.Parameters.Add(new SqlParameter("@maNhomToChucpr_sd", param[3].ToString())); cmd.Parameters.Add(new SqlParameter("@diaChi", param[4].ToString())); cmd.Parameters.Add(new SqlParameter("@maSoThue", param[5].ToString())); cmd.Parameters.Add(new SqlParameter("@dienThoai", param[6].ToString())); cmd.Parameters.Add(new SqlParameter("@Fax", param[7].ToString())); cmd.Parameters.Add(new SqlParameter("@Email", param[8].ToString())); cmd.Parameters.Add(new SqlParameter("@nguoiDaiDien", param[9].ToString())); cmd.Parameters.Add(new SqlParameter("@chucVuDD", param[10].ToString())); cmd.Parameters.Add(new SqlParameter("@nguoiLienHe", param[11].ToString())); cmd.Parameters.Add(new SqlParameter("@chucVuLH", param[12].ToString())); cmd.Parameters.Add(new SqlParameter("@dienThoaiLH", param[13].ToString())); cmd.Parameters.Add(new SqlParameter("@maDonVipr_sd", HttpContext.Current.Session.GetDonVi().maDonVi)); cmd.Parameters.Add(new SqlParameter("@nguoiThaoTac", HttpContext.Current.Session.GetCurrentUserID()));//hinhThucNhap cmd.Parameters.Add(new SqlParameter("@ngayThaotac", HttpContext.Current.Session.GetCurrentDatetimeMMddyyyy("MM/dd/yyyy"))); cmd.ExecuteNonQuery(); sqlCon.Close(); return(true); } catch { return(false); } }
public void themBCGSDauTuCT(AjaxPro.JavaScriptArray param) { try { SqlConnection sqlCon = new SqlConnection(HttpContext.Current.Session.GetConnectionString2()); sqlCon.Open(); string sql = @"INSERT INTO dbo.tblBCGSDauTuCT(sttBCGSDauTupr_sd,sttBuocThaoTac,sttDuAnpr_sd,sttVBDApr_sd) VALUES(@sttBCGSDauTupr_sd,@sttBuocThaoTac,@sttDuAnpr_sd,@sttVBDApr_sd)"; SqlCommand sqlCom = new SqlCommand(sql, sqlCon); sqlCom.Parameters.Add(new SqlParameter("@sttBCGSDauTupr_sd", param[2].ToString())); sqlCom.Parameters.Add(new SqlParameter("@sttBuocThaoTac", param[3].ToString())); sqlCom.Parameters.Add(new SqlParameter("@sttDuAnpr_sd", param[0].ToString())); sqlCom.Parameters.Add(new SqlParameter("@sttVBDApr_sd", param[1].ToString())); sqlCom.ExecuteNonQuery(); } catch (Exception ex) { } }
public string suaVanBan(AjaxPro.JavaScriptArray param) { try { SqlConnection sqlCon = new SqlConnection(HttpContext.Current.Session.GetConnectionString2()); sqlCon.Open(); SqlCommand cmd = new SqlCommand(@"update dbo.tblVanBanDA set soVanBan =@soVanBan,ngayKy=@ngayKy,maToChucpr_phathanh=@maToChucpr_phathanh,noiDung=@noiDung,giaTri=@giaTri,maLoaiVBanpr_sd=@maLoaiVBanpr_sd,chucDanhNguoiKy=@chucDanhNguoiKy,tenNguoiKy=@tenNguoiKy WHERE sttVBDApr=@sttVBDApr", sqlCon); cmd.Parameters.Add(new SqlParameter("@soVanBan", param[1].ToString())); if ((String.IsNullOrEmpty(param[2].ToString())) || (param[2].ToString() == "")) { cmd.Parameters.Add(new SqlParameter("@ngayKy", DBNull.Value)); } else { cmd.Parameters.Add(new SqlParameter("@ngayKy", _mChuyenChuoiSangNgay(param[2].ToString()))); } cmd.Parameters.Add(new SqlParameter("@maToChucpr_phathanh", param[3].ToString())); cmd.Parameters.Add(new SqlParameter("@noiDung", param[7].ToString())); cmd.Parameters.Add(new SqlParameter("@giaTri", (string.IsNullOrEmpty(param[8].ToString()) ? "0" : param[8].ToString().Replace(".", "").Replace(",", ".")))); cmd.Parameters.Add(new SqlParameter("@maLoaiVBanpr_sd", param[6].ToString())); cmd.Parameters.Add(new SqlParameter("@chucDanhNguoiKy", param[5].ToString())); cmd.Parameters.Add(new SqlParameter("@tenNguoiKy", param[4].ToString())); cmd.Parameters.Add(new SqlParameter("@sttVBDApr", param[0].ToString())); if (cmd.ExecuteNonQuery() > 0) { sqlCon.Close(); return("thanhCong"); } else { sqlCon.Close(); return("Cập nhật văn bản lỗi!"); } } catch (Exception ex) { return(ex.Message); } }