private SqlCommand User_Update()
{
//this is executed from claim.save in authorize.aspx
SqlCommand command = new SqlCommand();
command.CommandText = "User_Update";
command.CommandType = CommandType.StoredProcedure;
SqlParameterCollection parameters = command.Parameters;
DbUtility.AddParameterForDataAdapterCall(parameters,
SqlDbType.Int, 8, "@UserID",
"UserID", ParameterDirection.Input);
DbUtility.AddParameterForDataAdapterCall(parameters,
SqlDbType.NVarChar, 250, "@Email",
"Email", ParameterDirection.Input);
DbUtility.AddParameterForDataAdapterCall(parameters,
SqlDbType.NVarChar, 150, "@FirstName",
"FirstName", ParameterDirection.Input);
DbUtility.AddParameterForDataAdapterCall(parameters,
SqlDbType.NVarChar, 50, "@LastName",
"LastName", ParameterDirection.Input);
DbUtility.AddParameterForDataAdapterCall(parameters,
SqlDbType.NVarChar, 50, "@Password",
"Password", ParameterDirection.Input);
DbUtility.AddParameterForDataAdapterCall(parameters,
SqlDbType.Int, 4, "@SecurityLevel",
"SecurityLevel", ParameterDirection.Input);
DbUtility.AddParameterForDataAdapterCall(parameters,
SqlDbType.NVarChar, 50, "@Store",
"Store", ParameterDirection.Input);
return(command);
}
private SqlCommand User_Delete()
{
SqlCommand command = new SqlCommand();
command.CommandText = "User_Delete";
command.CommandType = CommandType.StoredProcedure;
SqlParameterCollection parameters = command.Parameters;
DbUtility.AddParameterForDataAdapterCall(parameters,
SqlDbType.Int, 8, "@UserID",
"UserID", ParameterDirection.Input);
return(command);
}
