protected void Page_Load(object sender, EventArgs e) { if (Request.QueryString["Username"] == null || Request.QueryString["Username"].ToString() == "") { error_btn.Text = "You must pass in a username"; return; } OleDbConnection con1 = new OleDbConnection(); con1.ConnectionString = @"Provider = Microsoft.ACE.OLEDB.12.0; Data Source = " + Request.PhysicalApplicationPath + "\\Yoav_DB.accdb"; con1.Open(); string sqlstring = "select FirstName, LastName, Username FROM users_tbl WHERE Username = @usr"; OleDbCommand conSer = new OleDbCommand(sqlstring, con1); conSer.Parameters.AddWithValue("@usr", Request.QueryString["Username"]); OleDbDataReader Drdr = conSer.ExecuteReader(); if (Drdr.HasRows) { DataListUsers.DataSource = Drdr; DataListUsers.DataBind(); } else { error_btn.Text = "No such user was found"; } con1.Close(); }
protected void Show_users(object sender, EventArgs e) { OleDbConnection con1 = new OleDbConnection(); con1.ConnectionString = @"Provider = Microsoft.ACE.OLEDB.12.0; Data Source = " + Request.PhysicalApplicationPath + "\\Yoav_DB.accdb"; con1.Open(); string sqlstring = "select FirstName, LastName, Username, Email, user_Password, Birthdate FROM users_tbl"; OleDbCommand conSer = new OleDbCommand(sqlstring, con1); OleDbDataReader Drdr = conSer.ExecuteReader(); DataListUsers.DataSource = Drdr; DataListUsers.DataBind(); con1.Close(); }