protected void signUpSubmitButton_Click(object sender, EventArgs e) { UserManager userManager=new UserManager(); User aUser=new User(); aUser.UserFullName = signUpFullName.Text; aUser.UserEmail = signUpEmailTextBox.Text; aUser.UserName = userName.Text; aUser.UserPassword = signUpPassword.Text; if (userManager.GetUser(aUser.UserName)!=null) { userName.BackColor = Color.Red; } else { if (userManager.InsertUser(aUser) > 0) { Response.Redirect("LoginPage.aspx"); } } }
public int InsertUser(User aUser) { SqlConnection connection = new SqlConnection(connectionString); string query = string.Format("INSERT INTO tbl_user VALUES('" + aUser.UserEmail + "','" + aUser.UserFullName + "','" + aUser.UserPassword + "','" + aUser.UserName + "')"); SqlCommand command = new SqlCommand(query, connection); connection.Open(); int rowAffected = command.ExecuteNonQuery(); connection.Close(); return rowAffected; }
public User GetUserById(string userId) { SqlConnection connection = new SqlConnection(connectionString); string query2 = string.Format("SELECT * FROM tbl_user WHERE UserId='" + userId + "'"); SqlCommand command2 = new SqlCommand(query2, connection); User aUser=new User(); connection.Open(); SqlDataReader reader = command2.ExecuteReader(); while (reader.Read()) { aUser.UserId = Convert.ToInt32(reader["UserId"].ToString()); aUser.UserFullName = reader["FullName"].ToString(); aUser.UserName = reader["UserName"].ToString(); aUser.UserEmail = reader["Email"].ToString(); aUser.UserPassword = reader["Password"].ToString(); } connection.Close(); return aUser; }
public int InsertUser(User aUser) { return aUserGateway.InsertUser(aUser); }