protected void Page_Load(object sender, EventArgs e) { string user = (string)Session["UserName"]; if (Request.Form["menu"] != null) { DBAccesor dB = ServiceLocator.Instance.GetService <DBAccesor>(); if (user != null) { string cmdStr = string.Format("SELECT * FROM TetrisHighScore WHERE [UserName]=N'{0}'", user); int score = int.Parse(Request.Form["scoreDB"]); if (dB.isExist(cmdStr)) { var table = dB.runSelectCmd(cmdStr); int highScore = (int)table.Rows[0]["Score"]; if (score > highScore) { table.Rows[0]["Score"] = score; dB.updateTable(cmdStr, table); } } else { string cmdStr1 = string.Format($"INSERT INTO TetrisHighScore(UserName, Score) VALUES (N'{user}',{score})"); dB.runSqlCommand(cmdStr1); } } Response.Redirect("tetrisGameOver.aspx"); } }
protected void Page_Load(object sender, EventArgs e) { if (Session["UserName"] == null) { Session["ErrorText"] = "לאורח אין גישה לעמוד זה "; Response.Redirect("ErrorPage.aspx"); } else { if ((string)Session["Admin"] == "y" && Session["UpdateByAdmin"] != null) { user = Session["UpdateByAdmin"].ToString(); string cmdStr = string.Format("SELECT * FROM UserDetails WHERE (UserName = N'{0}')", user); DBAccesor dbAccesor = ServiceLocator.Instance.GetService <DBAccesor>(); DataTable dataTable = dbAccesor.runSelectCmd(cmdStr); password = dataTable.Rows[0]["Password"].ToString(); mail = dataTable.Rows[0]["Mail"].ToString(); phone = dataTable.Rows[0]["Phone"].ToString(); address = dataTable.Rows[0]["Adress"].ToString(); birthDate = dataTable.Rows[0]["DateOfBirth"].ToString(); lName = dataTable.Rows[0]["LastName"].ToString(); fName = dataTable.Rows[0]["FirstName"].ToString(); if (Request.Form["updateBtn"] != null) { password = Request.Form["pass"].ToString(); mail = Request.Form["mail"].ToString(); phone = Request.Form["phone"].ToString(); address = Request.Form["address"].ToString(); birthDate = Request.Form["bd"].ToString(); lName = Request.Form["lname"].ToString(); fName = Request.Form["fname"].ToString(); string gender = "Rather not say"; if (Request.Form["gender"] != null) { gender = Request.Form["gender"].ToString(); } if (phone == "") { phone = "No Data"; } if (address == "") { address = "No Data"; } dataTable.Rows[0]["FirstName"] = fName; dataTable.Rows[0]["LastName"] = lName; dataTable.Rows[0]["Password"] = password; dataTable.Rows[0]["Mail"] = mail; dataTable.Rows[0]["Phone"] = phone; dataTable.Rows[0]["Adress"] = address; dataTable.Rows[0]["Gender"] = gender; dataTable.Rows[0]["DateOfBirth"] = birthDate; dbAccesor.updateTable(cmdStr, dataTable); Session["UpdateByAdmin"] = null; Response.Redirect("UsersIframeSrc.aspx"); } } else { Response.Redirect("UsersIframeSrc.aspx"); } } }