protected void btDongY_Click(object sender, EventArgs e) { string httt, htgh; string TenNguoiNhan, DiaChiNhan, DienThoaiNhan; TenNguoiNhan = txtNguoiNhan.Text; DiaChiNhan = txtDiaChiNhan.Text; DienThoaiNhan = txtDienThoaiNhan.Text; float TongThanhTien = float.Parse(lbTongTien.Text); httt = rblHinhThucThanhToan.SelectedIndex.ToString(); htgh = rblHinhThucGiaoHang.SelectedIndex.ToString(); try { SqlConnection con = new SqlConnection(X.strCon); con.Open(); SqlCommand cmd = new SqlCommand(); cmd.CommandType = CommandType.Text; cmd.Connection = con; cmd.CommandText = @"INSERT INTO DONDATHANG(MAKH,NGAYDH,TRIGIA,NGAYGIAOHANG,TENNGUOINHAN,DIACHINHAN,DIENTHOAINHAN,HTTHANHTOAN,HTGIAOHANG) VALUES(" + MAKH + ",@ngaydathang," + TongThanhTien + ",@ngaygiaohang,N'" + TenNguoiNhan + "',N'" + DiaChiNhan + "','" + DienThoaiNhan + "'," + httt + "," + htgh + ")"; cmd.Parameters.Add("@ngaydathang", SqlDbType.SmallDateTime); cmd.Parameters["@ngaydathang"].Value = DateTime.Today; cmd.Parameters.Add("@ngaygiaohang", SqlDbType.SmallDateTime); cmd.Parameters["@ngaygiaohang"].Value = cldNgayGiao.SelectedDate; cmd.ExecuteNonQuery(); con.Close(); string s = "SELECT MAX(SODH) FROM DONDATHANG WHERE MAKH=" + MAKH; int SoDonHang = int.Parse(X.GetData(s).Rows[0][0].ToString()); DataTable dt = new DataTable(); dt = (DataTable)Session["Giohang"]; int MaSP, SoLuong; float DonGia; for (int i = 0; i < dt.Rows.Count; i++) { MaSP = int.Parse(dt.Rows[i]["MaSP"].ToString()); SoLuong = int.Parse(dt.Rows[i]["SoLuong"].ToString()); DonGia = float.Parse(dt.Rows[i]["DonGia"].ToString()); s = "INSERT INTO CTDATHANG(SODH,MASP,SOLUONG,DONGIA) VALUES(" + SoDonHang + "," + MaSP + "," + SoLuong + "," + DonGia + ")"; X.Excute(s); } Session["Giohang"] = null; Response.Redirect("~/Xacnhandonhang.aspx?tt=1"); } catch { lbThongBaoLoi.Text = "Lỗi trong quá trình cập nhật dữ liệu!"; } }
protected void btDongY_Click(object sender, EventArgs e) { try { DataTable dt = x.GetData("SELECT TENDNADMIN FROM ADMIN WHERE TENDNADMIN='" + txtTenDN.Text + "' AND MATKHAUADMIN='" + txtMatKhauCu.Text + "'"); if (dt.Rows.Count > 0) { x.Excute("UPDATE ADMIN SET MATKHAUADMIN='" + txtMatKhauMoi.Text + "'WHERE TENDNADMIN='" + txtTenDN.Text + "'"); lbThongBaoLoi.Text = "Đổi mật khẩu thành công"; } else { lbThongBaoLoi.Text = "Tên đăng nhập hoặc mật khẩu cũ không hợp lệ!"; } } catch { lbThongBaoLoi.Text = "Thất bại!"; } }