protected void Page_Load(object sender, EventArgs e) { if (Session["LoggedIn"] != null && Session["Role"] != null && Session["AuthToken"] != null && Request.Cookies["AuthToken"] != null) { if (!Session["AuthToken"].ToString().Equals(Request.Cookies["AuthToken"].Value)) { Session.Clear(); Session.Abandon(); Session.RemoveAll(); Response.Redirect("Staff_Login.aspx"); if (Request.Cookies["ASP.NET_SessionId"] != null) { Response.Cookies["ASP.NET_SessionId"].Value = string.Empty; Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20); } if (Request.Cookies["AuthToken"] != null) { Response.Cookies["AuthToken"].Value = string.Empty; Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20); } } else { if (Session["Role"].ToString() == "Staff") { // on page load codes here if (!String.IsNullOrEmpty(Request.QueryString["id"])) { DBServiceReference.Service1Client client = new DBServiceReference.Service1Client(); var review = client.GetReviewById(Convert.ToInt32(Request.QueryString["id"])); // retrieves the selected review to display // checks if the review has already been dealt with if (review.Status.Trim() == "Approved" || review.Status.Trim() == "Rejected") { approve_btn.Visible = false; disapprove_btn.Visible = false; } review_lb.Text = review_lb.Text + review.Review_Id.ToString(); status_lb.Text = review.Status; // adds anchor tags/hyperlinks to the following text gem_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Gem_Listing.aspx?gemId=" + review.Gem_Id + "&gemT=" + review.Gem_Title + "'>" + review.Gem_Title + "</a>"; // now is id, will need to retrieve name with it next time. also want to make it clickable, link to gem page. author_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Staff_Account_Details.aspx?email=" + review.Author + "'>" + review.Author + "</a>"; rating_lb.Text = review.Rating.ToString(); description_lb.Text = review.Description; } else { // if there is no review selected, send back to reviews table. Response.Redirect("Staff_Reviews_Table.aspx"); } } else { Session.Clear(); Session.Abandon(); Session.RemoveAll(); Response.Redirect("Staff_Login.aspx"); if (Request.Cookies["ASP.NET_SessionId"] != null) { Response.Cookies["ASP.NET_SessionId"].Value = string.Empty; Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20); } if (Request.Cookies["AuthToken"] != null) { Response.Cookies["AuthToken"].Value = string.Empty; Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20); } } } } else { Session.Clear(); Session.Abandon(); Session.RemoveAll(); Response.Redirect("Staff_Login.aspx"); if (Request.Cookies["ASP.NET_SessionId"] != null) { Response.Cookies["ASP.NET_SessionId"].Value = string.Empty; Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20); } if (Request.Cookies["AuthToken"] != null) { Response.Cookies["AuthToken"].Value = string.Empty; Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20); } } }
protected void Page_Load(object sender, EventArgs e) { if (Session["LoggedIn"] != null && Session["Role"] != null && Session["AuthToken"] != null && Request.Cookies["AuthToken"] != null) { if (!Session["AuthToken"].ToString().Equals(Request.Cookies["AuthToken"].Value)) { Session.Clear(); Session.Abandon(); Session.RemoveAll(); Response.Redirect("Staff_Login.aspx"); if (Request.Cookies["ASP.NET_SessionId"] != null) { Response.Cookies["ASP.NET_SessionId"].Value = string.Empty; Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20); } if (Request.Cookies["AuthToken"] != null) { Response.Cookies["AuthToken"].Value = string.Empty; Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20); } } else { if (Session["Role"].ToString() == "Staff") { // on page load codes here if (!String.IsNullOrEmpty(Request.QueryString["id"])) { DBServiceReference.Service1Client client = new DBServiceReference.Service1Client(); var report = client.GetReportById(Convert.ToInt32(Request.QueryString["id"])); if (report.Type.Trim() == "gem") { var gem = client.GetGemById(Convert.ToInt32(report.Post)); System.Diagnostics.Debug.WriteLine("post" + report.Post); var id = report.Post; var title = gem.Title; System.Diagnostics.Debug.WriteLine("id" + id); System.Diagnostics.Debug.WriteLine("title" + title); report_lb.Text = report_lb.Text + report.Report_Id; status_lb.Text = report.Status; date_lb.Text = report.Date_reported.ToString("dd/MM/yyyy"); // adds anchor tags/hyperlinks to the following text reporter_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Staff_Account_Details.aspx?email=" + report.Reported_by + "'>" + report.Reported_by + "</a>"; // links to account details page of reporter type_lb.Text = report.Type; reported_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Gem_Listing.aspx?gemId=" + id + "&gemT=" + title + "'>" + title + "</a>"; // links to reported gem/review reason_lb.Text = report.Reason; remarks_lb.Text = report.Remarks; } else { var review = client.GetReviewById(Convert.ToInt32(report.Post)); var id = Convert.ToInt32(review.Gem_Id); var title = review.Gem_Title; report_lb.Text = report_lb.Text + report.Report_Id; status_lb.Text = report.Status; date_lb.Text = report.Date_reported.ToString("dd/MM/yyyy"); // adds anchor tags/hyperlinks to the following text reporter_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Staff_Account_Details.aspx?email=" + report.Reported_by + "'>" + report.Reported_by + "</a>"; // links to account details page of reporter type_lb.Text = report.Type; reported_lb.Text = "<a style='color: black; text-decoration: underline;' target='_blank' href='Gem_Listing.aspx?gemId=" + id + "&gemT=" + title + "'>" + title + "</a>"; // links to reported gem/review reason_lb.Text = report.Reason; remarks_lb.Text = report.Remarks; } // checks if the review has already been dealt if (report.Status.Trim() == "Resolved") { resolve_btn.Visible = false; } } else { // if there is no report selected, send back to reports table. Response.Redirect("Staff_Reports_Table.aspx"); } } else { Session.Clear(); Session.Abandon(); Session.RemoveAll(); Response.Redirect("Staff_Login.aspx"); if (Request.Cookies["ASP.NET_SessionId"] != null) { Response.Cookies["ASP.NET_SessionId"].Value = string.Empty; Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20); } if (Request.Cookies["AuthToken"] != null) { Response.Cookies["AuthToken"].Value = string.Empty; Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20); } } } } else { Session.Clear(); Session.Abandon(); Session.RemoveAll(); Response.Redirect("Staff_Login.aspx"); if (Request.Cookies["ASP.NET_SessionId"] != null) { Response.Cookies["ASP.NET_SessionId"].Value = string.Empty; Response.Cookies["ASP.NET_SessionId"].Expires = DateTime.Now.AddMonths(-20); } if (Request.Cookies["AuthToken"] != null) { Response.Cookies["AuthToken"].Value = string.Empty; Response.Cookies["AuthToken"].Expires = DateTime.Now.AddMonths(-20); } } }