public static ContactModel GetContact(int contactId) { var conn = new SqlConnection( "Data Source = (LocalDB)\\MSSQLLocalDB; AttachDbFilename = |DataDirectory|PersonalAdressBookDatabase.mdf; MultipleActiveResultSets = True; Integrated Security = True; Connect Timeout = 30"); var cmd = new SqlCommand("SELECT * FROM [Contacts] WHERE [Id] = @i") { Connection = conn }; conn.Open(); cmd.Parameters.Add(new SqlParameter("@i", SqlDbType.NVarChar)).Value = contactId; var reader = cmd.ExecuteReader(); if (reader.Read()) { var contactModel = new ContactModel { Id = (int) reader["Id"], Name = (string) reader["Name"], Surname = (string) reader["Surname"], Phone = (string) reader["Phone"], Street = (string) reader["Street"], City = (string)reader["City"], PostalCode = (string)reader["PostalCode"], Country = (string)reader["Country"] }; conn.Close(); return contactModel; } return null; }
public ActionResult DeleteContactGroup(ContactModel contactModel) { var conn = new SqlConnection( "Data Source = (LocalDB)\\MSSQLLocalDB; AttachDbFilename = |DataDirectory|PersonalAdressBookDatabase.mdf; MultipleActiveResultSets = True; Integrated Security = True; Connect Timeout = 30"); conn.Open(); foreach (var item in contactModel.GetContactsList()) { var delCmd = new SqlCommand("DELETE FROM [Contacts] WHERE [Id] = @i") {Connection = conn}; delCmd.Parameters.Clear(); delCmd.Parameters.Add(new SqlParameter("@i", SqlDbType.Int)).Value = item; delCmd.ExecuteNonQuery(); } conn.Close(); return RedirectToAction("Menu", "Application"); }
public ActionResult ShowContactGroup(string[] ids) { if (Session["user"] == null) { return RedirectToAction("Index", "Home"); } else { var conn = new SqlConnection( "Data Source = (LocalDB)\\MSSQLLocalDB; AttachDbFilename = |DataDirectory|PersonalAdressBookDatabase.mdf; MultipleActiveResultSets = True; Integrated Security = True; Connect Timeout = 30"); conn.Open(); List<ContactModel> contacts = new List<ContactModel>(); int[] id = null; if (ids != null) { id = new int[ids.Length]; int j = 0; foreach (string i in ids) { int.TryParse(i, out id[j++]); } } if (id != null) { for (int k = 0; k < id.Length; k++) { var cmd = new SqlCommand("SELECT * FROM [Contacts] WHERE [Id] = @i") {Connection = conn}; cmd.Parameters.Clear(); cmd.Parameters.Add(new SqlParameter("@i", SqlDbType.Int)).Value = id[k]; var reader = cmd.ExecuteReader(); while (reader.Read()) { var contactData = new ContactModel { Id = (int) reader["Id"], Name = (string) reader["Name"], Surname = (string) reader["Surname"], Phone = (string) reader["Phone"], Street = (string) reader["Street"], City = (string) reader["City"], PostalCode = (string) reader["PostalCode"], Country = (string) reader["Country"] }; contacts.Add(contactData); } } } conn.Close(); return View(contacts); } }
public ActionResult DeleteContact(ContactModel contactModel) { if (Session["user"] == null) { return RedirectToAction("Index", "Home"); } var conn = new SqlConnection( "Data Source = (LocalDB)\\MSSQLLocalDB; AttachDbFilename = |DataDirectory|PersonalAdressBookDatabase.mdf; MultipleActiveResultSets = True; Integrated Security = True; Connect Timeout = 30"); var delCmd = new SqlCommand( "DELETE FROM [Contacts] WHERE [Id] = @i") { Connection = conn }; conn.Open(); delCmd.Parameters.Clear(); delCmd.Parameters.Add(new SqlParameter("@i", SqlDbType.NVarChar)).Value = contactModel.Id; delCmd.ExecuteNonQuery(); conn.Close(); return RedirectToAction("Menu", "Application"); }
public ActionResult EditContact(ContactModel contactModel) { if (ModelState.IsValid) { if (Session["user"] == null) { return RedirectToAction("Index", "Home"); } else { var conn = new SqlConnection( "Data Source = (LocalDB)\\MSSQLLocalDB; AttachDbFilename = |DataDirectory|PersonalAdressBookDatabase.mdf; MultipleActiveResultSets = True; Integrated Security = True; Connect Timeout = 30"); var updCmd = new SqlCommand( "UPDATE [Contacts] SET [Name] = @name , [Surname] = @surname , [Phone] = @phone , [Street] = @street , [City] = @city , [PostalCode] = @postal , [Country] = @country WHERE [Id] = @id") { Connection = conn }; conn.Open(); updCmd.Parameters.Clear(); updCmd.Parameters.Add(new SqlParameter("@name", SqlDbType.NVarChar)).Value = contactModel.Name; updCmd.Parameters.Add(new SqlParameter("@surname", SqlDbType.NVarChar)).Value = contactModel.Surname; updCmd.Parameters.Add(new SqlParameter("@phone", SqlDbType.NVarChar)).Value = contactModel.Phone; updCmd.Parameters.Add(new SqlParameter("@street", SqlDbType.NVarChar)).Value = contactModel.Street; updCmd.Parameters.Add(new SqlParameter("@city", SqlDbType.NVarChar)).Value = contactModel.City; updCmd.Parameters.Add(new SqlParameter("@postal", SqlDbType.NVarChar)).Value = contactModel.PostalCode; updCmd.Parameters.Add(new SqlParameter("@country", SqlDbType.NVarChar)).Value = contactModel.Country; updCmd.Parameters.Add(new SqlParameter("@id", SqlDbType.Int)).Value = contactModel.Id; updCmd.ExecuteNonQuery(); conn.Close(); return RedirectToAction("Menu", "Application"); } } else { return View(); } }
public ActionResult AddContact(ContactModel contactModel) { if (ModelState.IsValid) { if (Session["user"] == null) { return RedirectToAction("Index", "Home"); } else { var user = Session["user"] as LoginModel; var conn = new SqlConnection( "Data Source = (LocalDB)\\MSSQLLocalDB; AttachDbFilename = |DataDirectory|PersonalAdressBookDatabase.mdf; MultipleActiveResultSets = True; Integrated Security = True; Connect Timeout = 30"); var cmd = new SqlCommand("SELECT * FROM [Users] WHERE [Login] = @l") { Connection = conn }; conn.Open(); cmd.Parameters.Add(new SqlParameter("@l", SqlDbType.NVarChar)).Value = @user.Login; var reader = cmd.ExecuteReader(); if (reader.Read()) { int userId = (int) reader["Id"]; var addCmd = new SqlCommand( "INSERT INTO [Contacts] ([Name], [Surname], [Phone], [Street], [City], [PostalCode], [Country], [UserId]) VALUES (@name, @surname, @phone, @street, @city, @postal, @country, @user)") { Connection = conn }; addCmd.Parameters.Clear(); addCmd.Parameters.Add(new SqlParameter("@name", SqlDbType.NVarChar)).Value = contactModel.Name; addCmd.Parameters.Add(new SqlParameter("@surname", SqlDbType.NVarChar)).Value = contactModel.Surname; addCmd.Parameters.Add(new SqlParameter("@phone", SqlDbType.NVarChar)).Value = contactModel.Phone; addCmd.Parameters.Add(new SqlParameter("@street", SqlDbType.NVarChar)).Value = contactModel.Street; addCmd.Parameters.Add(new SqlParameter("@city", SqlDbType.NVarChar)).Value = contactModel.City; addCmd.Parameters.Add(new SqlParameter("@postal", SqlDbType.NVarChar)).Value = contactModel.PostalCode; addCmd.Parameters.Add(new SqlParameter("@country", SqlDbType.NVarChar)).Value = contactModel.Country; addCmd.Parameters.Add(new SqlParameter("@user", SqlDbType.Int)).Value = userId; addCmd.ExecuteNonQuery(); conn.Close(); return RedirectToAction("Menu", "Application"); } else { ModelState.AddModelError("", "Wystąpił nieznany błąd."); conn.Close(); return View(); } } } else { return View(); } }
public ActionResult Menu(string condition) { ViewData["SearchCondition"] = condition; if (Session["user"] == null) { return RedirectToAction("Index", "Home"); } else { var user = Session["user"] as LoginModel; var conn = new SqlConnection( "Data Source = (LocalDB)\\MSSQLLocalDB; AttachDbFilename = |DataDirectory|PersonalAdressBookDatabase.mdf; MultipleActiveResultSets = True; Integrated Security = True; Connect Timeout = 30"); var cmd = new SqlCommand("SELECT * FROM [Users] WHERE [Login] = @l") { Connection = conn }; conn.Open(); cmd.Parameters.Add(new SqlParameter("@l", SqlDbType.NVarChar)).Value = @user.Login; var reader = cmd.ExecuteReader(); int userId = 0; if (reader.Read()) { userId = (int) reader["Id"]; } List<ContactModel> contacts = new List<ContactModel>(); if (string.IsNullOrEmpty(condition)) { cmd = new SqlCommand("SELECT * FROM [Contacts] WHERE [UserId] = @u") {Connection = conn}; cmd.Parameters.Add(new SqlParameter("@u", SqlDbType.Int)).Value = userId; reader = cmd.ExecuteReader(); while (reader.Read()) { var contactData = new ContactModel { Id = (int) reader["Id"], Name = (string) reader["Name"], Surname = (string) reader["Surname"], Phone = (string) reader["Phone"], Street = (string) reader["Street"], City = (string) reader["City"], PostalCode = (string) reader["PostalCode"], Country = (string) reader["Country"] }; contacts.Add(contactData); } } else { cmd = new SqlCommand( "SELECT * FROM [Contacts] WHERE [UserId] = @u AND ( [Name] LIKE @n OR [Surname] LIKE @n OR [Phone] LIKE @n OR [Street] LIKE @n OR [City] LIKE @n OR [PostalCode] LIKE @n OR [Country] LIKE @n )") { Connection = conn }; cmd.Parameters.Add(new SqlParameter("@u", SqlDbType.Int)).Value = userId; cmd.Parameters.Add(new SqlParameter("@n", SqlDbType.NVarChar)).Value = '%' + condition + '%'; reader = cmd.ExecuteReader(); while (reader.Read()) { var contactData = new ContactModel { Id = (int) reader["Id"], Name = (string) reader["Name"], Surname = (string) reader["Surname"], Phone = (string) reader["Phone"], Street = (string) reader["Street"], City = (string) reader["City"], PostalCode = (string) reader["PostalCode"], Country = (string) reader["Country"] }; contacts.Add(contactData); } } conn.Close(); return View(contacts); } }