private void InsertToDB(string item, int price) { string cmdStr = string.Format($"INSERT INTO Cart(OrderName, UserName, Price) VALUES (N'{item}', N'{Session["UserName"]}', {price})"); DBAccesor dB = ServiceLocator.Instance.GetService <DBAccesor>(); dB.runSqlCommand(cmdStr); }
protected void Page_Load(object sender, EventArgs e) { string user = (string)Session["UserName"]; if (Request.Form["menu"] != null) { DBAccesor dB = ServiceLocator.Instance.GetService <DBAccesor>(); if (user != null) { string cmdStr = string.Format("SELECT * FROM TetrisHighScore WHERE [UserName]=N'{0}'", user); int score = int.Parse(Request.Form["scoreDB"]); if (dB.isExist(cmdStr)) { var table = dB.runSelectCmd(cmdStr); int highScore = (int)table.Rows[0]["Score"]; if (score > highScore) { table.Rows[0]["Score"] = score; dB.updateTable(cmdStr, table); } } else { string cmdStr1 = string.Format($"INSERT INTO TetrisHighScore(UserName, Score) VALUES (N'{user}',{score})"); dB.runSqlCommand(cmdStr1); } } Response.Redirect("tetrisGameOver.aspx"); } }
protected void Page_Load(object sender, EventArgs e) { if (Session["UserName"] == null) { Session["ErrorText"] = "לאורח אין גישה לעמוד זה - כדי להזמין עליך להירשם "; Response.Redirect("ErrorPage.aspx"); } if (Request.Form["submit"] != null) { id = int.Parse(Request.Form["delId"]); if (isExist((string)Session["UserName"], int.Parse(Request.Form["delId"])) == false) { Session["ErrorText"] = "הזמנה זו לא שלך הכנס את המספר המתאים בבקשה"; Response.Redirect("ErrorPage.aspx"); } } DBAccesor dbAccessor = ServiceLocator.Instance.GetService <DBAccesor>(); string cmdString1 = string.Format("SELECT * FROM Cart WHERE ([UserName] = N'{0}')", Session["UserName"]); DataTable dataTable = dbAccessor.runSelectCmd(cmdString1); for (int i = 0; i < dataTable.Rows.Count; i++) { cartTable += "<tr><td> פריט: " + dataTable.Rows[i]["OrderName"] + "</td>" + "<td> מספר פריט: " + dataTable.Rows[i]["OrderId"] + " </td > " + "<td> מחיר: " + dataTable.Rows[i]["Price"] + "$" + " </td ></tr>"; totalAmount += (int)dataTable.Rows[i]["Price"]; } cartTable += "</table>"; if (Request.Form["submit"] != null) { string delCmd = string.Format($"delete from Cart where OrderId = {id}"); dbAccessor.runSqlCommand(delCmd); Response.Redirect("Cart.aspx"); } Session["TotalPrice"] = totalAmount; // } }
/** * Logic behind the page check if account exists * Creates record for new users * Redirect for Login or error pages. */ protected void Page_Load(object sender, EventArgs e) { if (Request.Form["submit"] != null) { string Fname = getNCleanRequestParamByName("fname"); string Lname = getNCleanRequestParamByName("lname"); string DOB = getNCleanRequestParamByName("bd"); string user = getNCleanRequestParamByName("un"); string pass = getNCleanRequestParamByName("pass"); string address = getNCleanRequestParamByName("address"); string mail = getNCleanRequestParamByName("mail"); string phone = getNCleanRequestParamByName("phone"); string gender = "Rather not say"; if (Request.Form["gender"] != null) { gender = Request.Form["gender"].ToString(); } Session["UserName"] = user; if (mail != "" && user != "") { if (isExistsMail(mail)) { Session["ErrorText"] = mail + " כבר קיים"; Response.Redirect("ErrorPage.aspx"); Response.End(); } if (isExistsUserName(user)) { Session["ErrorText"] = user + " כבר קיים"; Response.Redirect("ErrorPage.aspx"); Response.End(); } string cmdStr = string.Format("INSERT INTO UserDetails(FirstName, LastName, UserName , Password , Mail , Phone, Adress, Gender, DateOfBirth) VALUES (N'{0}', N'{1}', N'{2}', N'{3}', N'{4}', N'{5}', N'{6}',N'{7}',N'{8}')", Fname, Lname, user, pass, mail, phone, address, gender, DOB); DBAccesor dbAccessor = ServiceLocator.Instance.GetService <DBAccesor>(); if (dbAccessor.runSqlCommand(cmdStr) == 1) { Response.Redirect("Login.aspx"); } } } }
protected void Page_Load(object sender, EventArgs e) { if ((string)Session["UserName"] == null) { Session["ErrorText"] = "לאורח אין גישה לעמוד זה "; Response.Redirect("ErrorPage.aspx"); } string btn = Request.Form["DelUsr"]; if (btn != null) { string cmdString = string.Format("DELETE From Cart Where OrderId in (select c.OrderId from Cart c, UserDetails ud where c.UserName = ud.UserName and ud.UserName = N'{0}') Delete FROM UserDetails Where (UserName = N'{0}')", Session["UserName"]); DBAccesor adbAccesor = ServiceLocator.Instance.GetService <DBAccesor>(); adbAccesor.runSqlCommand(cmdString); Response.Redirect("Login.aspx"); } }