public void InsertCustomOrder(CustomOrderUserViewModel c) { //ArtistsBelowBudget string query = "SELECT ARTIST_UNAME FROM ARTIST WHERE START_SALARY <=" + c.Budget; List <Artist> l = ConvertDataTable <Artist>(db.ExecuteReader(query)); if (l.Count == 0) { return; } Random random = new Random(); int artist = random.Next(0, l.Count); string uname = l[artist].ARTIST_UNAME; //Create an artwork query = "INSERT INTO ARTWORK VALUES('" + c.Category + "','" + uname + "'," + "null" + ",'" + c.TITLE + "',0,1,1,'" + c.DESCRIPTION + "'," + c.WIDTH + "," + c.HEIGHT + "," + c.DEPTH + "," + c.Budget + ",'" + c.MATERIAL + "','" + c.MEDIUM + "','" + "null" + "','" + "null" + "'," + "null" + ")"; if (db.ExecuteNonQuery(query) == 0) { return; } query = "INSERT INTO dbo.[ORDER] VALUES(1,'" + DateTime.Now.ToString("mm/dd/yyyy") + "','" + c.Deadline.ToString().Substring(0, 9) + "');"; db.ExecuteNonQuery(query); }
public ActionResult CustomOrder(CustomOrderUserViewModel c) { if (ModelState.IsValid) { db.InsertCustomOrder(c); return(RedirectToAction("Index", "Home")); } return(View()); }
public void InsertCustomOrder(CustomOrderUserViewModel c) { //ArtistsBelowBudget string storedProcedureName = StoredProcedures.ArtistSalaryLess; Dictionary <string, object> Parameters = new Dictionary <string, object>(); Parameters.Add("@Budget", c.Budget); List <Artist> l = ConvertDataTable <Artist>(db.ExecuteReader_proc(storedProcedureName, Parameters)); if (l.Count == 0) { return; } Random random = new Random(); int artist = random.Next(0, l.Count); string uname = l[artist].ARTIST_UNAME; //Create an artwork storedProcedureName = StoredProcedures.InsertArtwork; Parameters = new Dictionary <string, object>(); //Defaults: ADMIN_ID = NULL, ACCEPTED = 0(INITIALLY NOT ACCEPTED), STATUS = 1(INTIAILLY AVAILABLE) Parameters.Add("@CATEGORY_NAME", c.Category); Parameters.Add("@ARTIST_UNAME", uname); Parameters.Add("@TITLE", c.TITLE); Parameters.Add("@PRIVACY", 1); Parameters.Add("@DESCRIPTION", c.DESCRIPTION); Parameters.Add("@WIDTH", c.WIDTH); Parameters.Add("@HEIGHT", c.HEIGHT); Parameters.Add("@DEPTH", c.DEPTH); Parameters.Add("@PRICE", c.Budget); Parameters.Add("@MATERIAL", c.MATERIAL); Parameters.Add("@MEDIUM", c.MEDIUM); Parameters.Add("@SUBJECT", " "); Parameters.Add("@PHOTO", " "); Parameters.Add("@YEAR", DateTime.Now.ToString("yyyy")); if (db.ExecuteNonQuery_proc(storedProcedureName, Parameters) == 0) { return; } storedProcedureName = StoredProcedures.InsertCustomOrder; Parameters = new Dictionary <string, object>(); Parameters.Add("@OrderDate", DateTime.Now.ToString("MM/dd/yyyy")); Parameters.Add("@Deadline", c.Deadline.ToString("MM/dd/yyyy")); db.ExecuteNonQuery_proc(storedProcedureName, Parameters); }