public bool SaveGame(string username, int time, int clicks, string game_data) { // setup service using (ConnectionService service = new ConnectionService()) { try { // Open connection to database service.Connection.Open(); // Create statement SqlCommand command = new SqlCommand(null, service.Connection) { CommandText = "UPDATE saved_games " + "SET time = @time, " + "clicks = @clicks, " + "game_data = @gamedata " + "WHERE username = @username;" }; // Setup parameters command.Parameters.Add("@username", SqlDbType.VarChar, 50).Value = username; command.Parameters.Add("@time", SqlDbType.Int, 0).Value = time; command.Parameters.Add("@clicks", SqlDbType.Int, 0).Value = clicks; command.Parameters.Add("@gamedata", SqlDbType.Text, 5000).Value = game_data; // Prepare the statement command.Prepare(); // Execute statement. command.ExecuteNonQuery(); } catch { // If any issues, return false return(false); } } return(false); }
/// <summary> /// Delete user from database. /// </summary> public bool DeleteUser(string username) { // Setup service using (ConnectionService service = new ConnectionService()) { try { // Open connection to database service.Connection.Open(); // Create statement SqlCommand command = new SqlCommand(null, service.Connection) { CommandText = "DELETE FROM users WHERE username = @username;" }; // Setup parameter command.Parameters.Add("@username", SqlDbType.VarChar, 50).Value = username; // Prepare the statement. command.Prepare(); // Execute statement. command.ExecuteNonQuery(); } catch { // if any issues, return false. return(false); } } // On success, return true. return(true); }
/// <summary> /// Add a new user to the database. /// </summary> public bool AddNewUser(UserModel user) { // Set the connection using (ConnectionService service = new ConnectionService()) { try { // Open the connection service.Connection.Open(); // Set the command text SqlCommand command = new SqlCommand(null, service.Connection) { CommandText = "INSERT INTO users (username, password, firstname, lastname, gender, age, state, email)" + "VALUES (@username, @password, @firstname, @lastname, @gender, @age, @state, @email);" + "INSERT INTO saved_games(username, time, clicks, game_data)" + "VALUES (@username, NULL, NULL, NULL);" }; // Set the parameters command.Parameters.Add("@username", SqlDbType.VarChar, 50).Value = user.Username; command.Parameters.Add("@password", SqlDbType.VarChar, 50).Value = user.Password; command.Parameters.Add("@firstname", SqlDbType.VarChar, 50).Value = user.FirstName; command.Parameters.Add("@lastname", SqlDbType.VarChar, 50).Value = user.LastName; command.Parameters.Add("@gender", SqlDbType.VarChar, 10).Value = user.Gender; command.Parameters.Add("@age", SqlDbType.Int, 0).Value = user.Age; command.Parameters.Add("@state", SqlDbType.VarChar, 20).Value = user.State; command.Parameters.Add("@email", SqlDbType.VarChar, 50).Value = user.Email; // Prepare the statement. command.Prepare(); // Execute the statement. command.ExecuteNonQuery(); } catch { // Return false if any issues. return(false); } try { // Set the command text SqlCommand command = new SqlCommand(null, service.Connection) { CommandText = "INSERT INTO saved_games (username, time, clicks, game_data)" + "VALUES (@username, NULL, NULL, NULL)" }; command.Parameters.Add("@username", SqlDbType.VarChar, 50).Value = user.Username; } catch { } } // On success, return true. return(true); }