public bool insertKHForQL(string maKH, string tenKH, string gender, string address, string phone, string TP, DateTime ngayBD, MemoryStream picture) { My_DB mydb = new My_DB(); SqlCommand command = new SqlCommand("insert into QLKH(MaKh,TenKH ,GioiTinh,DiaChi,DienThoai,ThuePhong,NgayBatDau,CMND)" + " Values(@MKH, @tkh, @gt,@adr, @phone,@TP,@date,@pic)", mydb.GetConnection); command.Parameters.Add("@MKH", SqlDbType.VarChar).Value = maKH; command.Parameters.Add("@tkh", SqlDbType.NVarChar).Value = tenKH; command.Parameters.Add("@gt", SqlDbType.NVarChar).Value = gender; command.Parameters.Add("@adr", SqlDbType.NVarChar).Value = address; command.Parameters.Add("@phone", SqlDbType.VarChar).Value = phone; command.Parameters.Add("@TP", SqlDbType.VarChar).Value = TP; command.Parameters.Add("@date", SqlDbType.DateTime).Value = ngayBD; command.Parameters.Add("@pic", SqlDbType.Image).Value = picture.ToArray(); mydb.openConnection(); if ((command.ExecuteNonQuery() == 1)) { mydb.closeConnection(); return(true); } else { mydb.closeConnection(); return(false); } }
public bool deleteBaoCao(int id) { SqlCommand command = new SqlCommand("DELETE FROM BaoCaoNgay WHERE Id = @Id", mydb.GetConnection); command.Parameters.Add("@Id", SqlDbType.Int).Value = id; mydb.openConnection(); if ((command.ExecuteNonQuery() == 1)) { mydb.closeConnection(); return(true); } else { mydb.closeConnection(); return(false); } }
public bool insertNhanVien(int id, string fname, string lname, DateTime bdate, string gender, string phone, string address, MemoryStream picture, int CaLamViec) { SqlCommand command = new SqlCommand("insert into TTNV(IdNhanVien , Fname, Lname, Bdate, Gender, Phone, Address, Picture,CaLamViec)" + " Values(@id, @fn, @ln,@bdt, @gdr, @phn, @adrs, @pic,@Ca)", mydb.GetConnection); command.Parameters.Add("@id", SqlDbType.Int).Value = id; command.Parameters.Add("@fn", SqlDbType.NVarChar).Value = fname; command.Parameters.Add("@ln", SqlDbType.NVarChar).Value = lname; command.Parameters.Add("@bdt", SqlDbType.DateTime).Value = bdate; command.Parameters.Add("@gdr", SqlDbType.NVarChar).Value = gender; command.Parameters.Add("@phn", SqlDbType.NVarChar).Value = phone; command.Parameters.Add("@adrs", SqlDbType.NVarChar).Value = address; command.Parameters.Add("@pic", SqlDbType.Image).Value = picture.ToArray(); command.Parameters.Add("@Ca", SqlDbType.Int).Value = CaLamViec; mydb.openConnection(); if ((command.ExecuteNonQuery() == 1)) { mydb.closeConnection(); return(true); } else { mydb.closeConnection(); return(false); } }
public bool updateTPhong(string maP) { My_DB mydb = new My_DB(); SqlCommand command = new SqlCommand("UPDATE TTPhong SET TrangThai = @TP where MaPhong = @mp", mydb.GetConnection); command.Parameters.Add("@TP", SqlDbType.Int).Value = 0; command.Parameters.Add("@mp", SqlDbType.VarChar).Value = maP; mydb.openConnection(); if ((command.ExecuteNonQuery() == 1)) { mydb.closeConnection(); return(true); } else { mydb.closeConnection(); return(false); } }
public bool updateNGayKTForQL(string MAKH, DateTime NgayKT) { SqlCommand command = new SqlCommand("UPDATE QLKH SET NgayKetThuc = @NKT WHERE MaKH = @Ma", mydb.GetConnection); command.Parameters.Add("@Ma", SqlDbType.VarChar).Value = MAKH; command.Parameters.Add("@NKT", SqlDbType.DateTime).Value = NgayKT; mydb.openConnection(); if ((command.ExecuteNonQuery() == 1)) { mydb.closeConnection(); return(true); } else { mydb.closeConnection(); return(false); } }
private void ButtonLogin_Click(object sender, EventArgs e) { Nhanvien nv = new Nhanvien(); My_DB db = new My_DB(); db.openConnection(); try { SqlCommand command = new SqlCommand("SELECT * FROM Login WHERE UserName = @User AND PassWord = @Pass ", db.GetConnection); command.Parameters.Add("@User", SqlDbType.VarChar).Value = TextBoxUser.Text; command.Parameters.Add("@Pass", SqlDbType.VarChar).Value = TextBoxPassword.Text; SqlDataAdapter adapter = new SqlDataAdapter(command); DataTable table = new DataTable(); adapter.SelectCommand = command; adapter.Fill(table); SqlCommand command2 = new SqlCommand("Select ChucVu From Login where UserName like '" + TextBoxUser.Text + "%'"); DataTable table2 = nv.getLaoCong(command2); string ChucVu = (string)table2.Rows[0]["ChucVu"]; SqlCommand command3 = new SqlCommand("Select Id From Login where UserName like '" + TextBoxUser.Text + "%'"); DataTable table3 = nv.getLaoCong(command3); int Id = (int)table3.Rows[0]["Id"]; if (ChucVu == "LaoCong ") { if (table.Rows.Count > 0) { Global.SetGlobalUserId(Id); LaoCong str = new LaoCong(); this.Hide(); str.ShowDialog(); this.Show(); } else { MessageBox.Show("Invalid Username or Password"); } } else if (ChucVu == "LeTan ") { if (table.Rows.Count > 0) { Global.SetGlobalUserId(Id); LeTan str = new LeTan(); this.Hide(); str.ShowDialog(); this.Show(); } else { MessageBox.Show("Invalid Username or Password"); } } else if (ChucVu == "QuanLy ") { if (table.Rows.Count > 0) { Global.SetGlobalUserId(Id); Quan_ly str = new Quan_ly(); this.Hide(); str.ShowDialog(); this.Show(); } else { MessageBox.Show("Invalid Username or Password"); } } else { MessageBox.Show("Invalid Username or Password"); } } catch (Exception e1) { MessageBox.Show("Invalid Username or Password ", "Error", MessageBoxButtons.OK, MessageBoxIcon.Error); } }