//delete
public static int DeleteCart(int id)
{
SqlCommand cmd = new SqlCommand("delete from Cart where CID=@id)");
cmd.Parameters.AddWithValue("id", id);
return(DBLayers.DML(cmd));
}
//delete
public static int DeleteUser(int id)
{
SqlCommand cmd = new SqlCommand("delete from Users where Id=@id");
cmd.Parameters.AddWithValue("id", id);
return(DBLayers.DML(cmd));
}
public static DataTable GetUser(int id)
{
SqlCommand cmd = new SqlCommand("select * from Users where Id=@id");
cmd.Parameters.AddWithValue("id", id);
return(DBLayers.select(cmd));
}
//insert
public static int InsertCategory(string name)
{
SqlCommand cmd = new SqlCommand("insert into Category values(@name)");
cmd.Parameters.AddWithValue("name", name);
return(DBLayers.DML(cmd));
}
//select
public static DataTable GetUserId(string name, string password)
{
SqlCommand cmd = new SqlCommand("select Id from Users where Name=@name and Password=@password");
cmd.Parameters.AddWithValue("name", name);
cmd.Parameters.AddWithValue("password", password);
return(DBLayers.select(cmd));
}
public static int changePassword(int id, string newPassword)
{
SqlCommand cmd = new SqlCommand("update Users set Password=@password where Id=@id");
cmd.Parameters.AddWithValue("id", id);
cmd.Parameters.AddWithValue("password", newPassword);
return(DBLayers.DML(cmd));
}
//update
public static int UpdateCategory(int id, string name)
{
SqlCommand cmd = new SqlCommand("update Category set Id=@id,Name=@name)");
cmd.Parameters.AddWithValue("id", id);
cmd.Parameters.AddWithValue("name", name);
return(DBLayers.DML(cmd));
}
//update
public static int UpdateCart(int id, int user_id, int product_id, int amount, DateTime date_purchased)
{
SqlCommand cmd = new SqlCommand("Update Cart set UserId=@user_id,ProductId=@product_id,Amount=@amount,DatePurchased=@date_purchased)");
cmd.Parameters.AddWithValue("user_id", user_id);
cmd.Parameters.AddWithValue("product_id", product_id);
cmd.Parameters.AddWithValue("amount", amount);
cmd.Parameters.AddWithValue("date_purchased", date_purchased);
return(DBLayers.DML(cmd));
}
//insert
public static int InsertCart(int user_id, int product_id, int amount, DateTime date_purchased)
{
SqlCommand cmd = new SqlCommand("insert into Cart (UserId,ProductId,Amount,DatePurchased)values(@user_id,@product_id,@amount,@date_purchased)");
cmd.Parameters.AddWithValue("user_id", user_id);
cmd.Parameters.AddWithValue("product_id", product_id);
cmd.Parameters.AddWithValue("amount", amount);
cmd.Parameters.AddWithValue("date_purchased", date_purchased);
return(DBLayers.DML(cmd));
}
//update
public static int UpdateUser(int id, string name, int age, string password, string email, string gender, string image)
{
SqlCommand cmd = new SqlCommand("update Users set Name=@name ,Age=@age,Password=@password,Email=@email,Gender=@gender,Image=@image where Id=@id)");
cmd.Parameters.AddWithValue("id", id);
cmd.Parameters.AddWithValue("name", name);
cmd.Parameters.AddWithValue("age", age);
cmd.Parameters.AddWithValue("password", password);
cmd.Parameters.AddWithValue("email", email);
cmd.Parameters.AddWithValue("image", image);
return(DBLayers.DML(cmd));
}
//insert
public static int InsertUser(string name, int age, string password, string email, string gender, string image)
{
SqlCommand cmd = new SqlCommand("insert into Users(Name,Age,Password,Email,Gender,Image) values(@name,@age,@password,@email,@gender,@image)");
cmd.Parameters.AddWithValue("name", name);
cmd.Parameters.AddWithValue("age", age);
cmd.Parameters.AddWithValue("password", password);
cmd.Parameters.AddWithValue("email", email);
cmd.Parameters.AddWithValue("gender", gender);
cmd.Parameters.AddWithValue("image", image);
return(DBLayers.DML(cmd));
}
protected void btn_save_Click(object sender, EventArgs e)
{
try
{
string path = "~/attach/" + fu_img.FileName;
fu_img.SaveAs(Server.MapPath(path));
SqlCommand cmd = new SqlCommand("update Users set Name=@name, Age=@age, Gender=@gender, Email=@email, Image=@image where Id=@id");
cmd.Parameters.AddWithValue("id", int.Parse(Request.Cookies["user"].Values["id"]));
cmd.Parameters.AddWithValue("name", txt_name.Text);
cmd.Parameters.AddWithValue("age", int.Parse(txt_age.Text));
cmd.Parameters.AddWithValue("gender", txt_gender.Text);
cmd.Parameters.AddWithValue("email", txt_email.Text);
cmd.Parameters.AddWithValue("image", path);
DBLayers.DML(cmd);
//int x = DBLayers.DML(cmd);
//Response.Write(x);
Response.Redirect("~/Profile.aspx");
}
catch
{
string path = "~/attach/" + fu_img.FileName;
fu_img.SaveAs(Server.MapPath(path));
SqlCommand cmd = new SqlCommand("update Users set Name=@name, Age=@age, Gender=@gender, Email=@email, Image=@image where Id=@Sid");
cmd.Parameters.AddWithValue("Sid", int.Parse(Session["id"].ToString()));
//cmd.Parameters.AddWithValue("id", int.Parse(Request.Cookies["user"].Values["id"]));
cmd.Parameters.AddWithValue("name", txt_name.Text);
cmd.Parameters.AddWithValue("age", int.Parse(txt_age.Text));
cmd.Parameters.AddWithValue("gender", txt_gender.Text);
cmd.Parameters.AddWithValue("email", txt_email.Text);
cmd.Parameters.AddWithValue("image", path);
DBLayers.DML(cmd);
//int x=DBLayers.DML(cmd);
//Response.Write(x);
Response.Redirect("~/Profile.aspx");
}
}
public static DataTable GetAllUsers()
{
SqlCommand cmd = new SqlCommand("select * from Users");
return(DBLayers.select(cmd));
}
protected void Page_Load(object sender, EventArgs e)
{
if (IsPostBack)
{
if (Request.QueryString["id"] != null)
{
int id = Convert.ToInt32(Request.QueryString["id"]);
ProductLayer.DeleteProduct(id);
}
}
if (Session["id"] != null)
{
SqlCommand cmd = new SqlCommand("select * from Cart c, Product p where c.ProductId = p.Id and c.UserId=@id");
cmd.Parameters.AddWithValue("id", int.Parse(Request.Cookies["user"].Values["id"]));
DataTable dt = DBLayers.select(cmd);
//DataTable dt = ProductLayer.GetAllProducts();
for (int i = 0; i < dt.Rows.Count; i++)
{
Panel productPanel = new Panel();
ImageButton imageButton = new ImageButton();
Label lblName = new Label();
Label lblPrice = new Label();
Label lblDate = new Label();
Label lblQuantity = new Label();
imageButton.ImageUrl = dt.Rows[i]["Image"].ToString();
imageButton.CssClass = "productImage";
//imageButton.PostBackUrl = "~/cart.aspx?id="+dt.Rows[i]["Id"];
Button btn = new Button();
btn.CssClass = "cardButton";
btn.Text = "Delete Order";
btn.PostBackUrl = "~/purchasedHistory.aspx?id=" + dt.Rows[i]["Id"];
lblName.Text = "Name: " + dt.Rows[i]["Name"].ToString();
lblName.CssClass = "productName";
lblDate.Text = "Purchased " + dt.Rows[i]["DatePurchased"].ToString();
lblDate.CssClass = "productPrice";
lblPrice.Text = "Price: " + dt.Rows[i]["Price"].ToString() + " $";
lblPrice.CssClass = "productPrice";
lblQuantity.Text = "Quantity: " + dt.Rows[i]["Amount"].ToString();
lblQuantity.CssClass = "productPrice";
productPanel.Controls.Add(imageButton);
productPanel.Controls.Add(new Literal {
Text = "<br/>"
});
productPanel.Controls.Add(lblName);
productPanel.Controls.Add(new Literal {
Text = "<br/>"
});
productPanel.Controls.Add(lblDate);
productPanel.Controls.Add(new Literal {
Text = "<br/>"
});
productPanel.Controls.Add(lblQuantity);
productPanel.Controls.Add(new Literal {
Text = "<br/>"
});
productPanel.Controls.Add(lblPrice);
productPanel.Controls.Add(new Literal {
Text = "<br/>"
});
productPanel.Controls.Add(btn);
productPanel.Controls.Add(new Literal {
Text = "<br/>"
});
pnl_products.Controls.Add(productPanel);
}
}
else
{
Response.Redirect("~/login.aspx");
}
}
