public async Task Post([FromBody] InventurnaPostavka inventurnaPostavka) { string skl = inventurnaPostavka.Skl; string vt = inventurnaPostavka.Vt; string stdok = inventurnaPostavka.Stdok; string sifart = inventurnaPostavka.Sifart; string datum = inventurnaPostavka.Datum; string invkoli = inventurnaPostavka.Invkoli; var cmd = new SqlCommand(@"INSERT INTO InventurGambo (SKL, VT, STDOK, SIFART, DATUM, INVKOLI) " + "VALUES ('" + skl + "', '" + vt + "', '" + stdok + "', '" + sifart + "', '" + datum + "', '" + invkoli + "') "); await SqlCommand.ExecuteNonQuery(cmd); }
public async Task Put(string id, [FromBody] InventurnaPostavka inventurnaPostavka) { string skl = inventurnaPostavka.Skl; string vt = inventurnaPostavka.Vt; string stdok = inventurnaPostavka.Stdok; string sifart = inventurnaPostavka.Sifart; string datum = inventurnaPostavka.Datum; string invkoli = inventurnaPostavka.Invkoli; var cmd = new SqlCommand(@"UPDATE InventurDnevnik " + "SET SKL = '" + skl + "', " + "VT = '" + vt + "', " + "STDOK = '" + stdok + "', " + "SIFART = '" + sifart + "', " + "DATUM = '" + datum + "', " + "INVKOLI = '" + invkoli + "' " + "WHERE ZST = @id"); cmd.Parameters.AddWithValue("id", id); await SqlCommand.ExecuteNonQuery(cmd); }