public ActionResult Create(Order order) { //Check user is logged in if (WebSecurity.IsAuthenticated) { if (ModelState.IsValid) { db.Orders.Add("INSERT into dbo.Orders VALUES(dbo.OrderId, dbo.StoreId, dbo.OrderNumber"); db.SaveChanges(); foreach (OrderLine line in order.OrderLines) { line.OrderId = order.OrderId; db.OrderLines.Add(line); } db.SaveChanges(); return(RedirectToAction("Edit", new { id = order.OrderId })); } ViewBag.BookList = new SelectList(db.Books, "BookId", "Title"); ViewBag.StoreList = new SelectList(db.Stores, "StoreId", "StoreOwner", order.StoreId); return(View(order)); } else { //Return the user to the login page if there is no user id return(RedirectToAction("Login", "Account")); } }
public ActionResult Create(Book book) { //Check user is logged in if (WebSecurity.IsAuthenticated) { if (ModelState.IsValid) { db.Books.Add(book); db.SaveChanges(); return(RedirectToAction("Index")); } ViewBag.AuthorList = new SelectList(db.Authors, "AuthorId", "Publisher", book.AuthorId); ViewBag.SupplierList = new SelectList(db.Suppliers, "SupplierId", "SupplierName", book.SupplierId); return(View(book)); } else { //Return the user to the login page if there is no user id return(RedirectToAction("Login", "Account")); } }
public ActionResult Create(Order order) { //Check user is logged in if (WebSecurity.IsAuthenticated) { if (ModelState.IsValid) { db.Database.ExecuteSqlCommand( "INSERT into dbo.Orders(dbo.StoreId, dbo.OrderNumber) " + "VALUES(" + order.StoreId + ", '" + order.OrderNumber + "')" ); var id = db.Database.SqlQuery <int>("SELECT MAX(orderId) FROM dbo.Orders").Single(); order.OrderId = id; db.SaveChanges(); foreach (OrderLine line in order.OrderLines) { line.OrderId = order.OrderId; db.OrderLines.Add(line); } db.SaveChanges(); return(RedirectToAction("Edit", new { id = order.OrderId })); } ViewBag.BookList = new SelectList(db.Books, "BookId", "Title"); ViewBag.StoreList = new SelectList(db.Stores, "StoreId", "StoreOwner", order.StoreId); return(View(order)); } else { //Return the user to the login page if there is no user id return(RedirectToAction("Login", "Account")); } }