protected void Page_Load(object sender, EventArgs e)
{
DataAccess.Db db = new DataAccess.Db();
if (Request.QueryString["id"] == null)
{
Response.Redirect("items.aspx");
}
else
{
if (Session["user"] == null)
{
finder.Text = "Unregistered user";
}
else
{
finder.Text = Session["user"].ToString();
}
id = Convert.ToInt32(Request.QueryString["id"]);
SqlCommand command = db.executecommand("select * from [comment] where book='" + id + "'");
DataTable dt = new DataTable();
SqlDataAdapter da = new SqlDataAdapter(command);
da.Fill(dt);
r1.DataSource = dt;
r1.DataBind();
}
}
protected void Page_Load(object sender, EventArgs e)
{
db = new DataAccess.Db();
SqlConnection = new SqlConnection(@"Data Source=(LocalDB)\MSSQLLocalDB;AttachDbFilename=C:\course\course\App_Data\Library.mdf;Integrated Security=True");
if (Request.QueryString["id"] == null)
{
Response.Redirect("items.aspx");
}
else
{
id = Convert.ToInt32(Request.QueryString["id"].ToString());
string sql = "select * from product where Id='" + id + "'";
SqlCommand cmd = db.executecommand(sql);
DataTable dt = new DataTable();
SqlDataAdapter da = new SqlDataAdapter(cmd);
da.Fill(dt);
d1.DataSource = dt;
d1.DataBind();
}
course.Business_Layer.productBU productBU = new Business_Layer.productBU();
Business_Layer.product p = productBU.GetProductbyID(id.ToString());
Rating.Text = p.rate.ToString();
}
protected void Page_Load(object sender, EventArgs e)
{
db = new DataAccess.Db();
SqlCommand command;
if (Request.QueryString["category"] == null)
{
command = db.executecommand("select * from product where product_added=1");
}
else
{
command = db.executecommand("select * from product where product_added=1 and product_category='" + Request.QueryString["category"].ToString() + "'");
}
if (Request.QueryString["category"] == null && Request.QueryString["search"] != null)
{
command = db.executecommand("select * from product where product_added=1 and product_name like('%" + Request.QueryString["search"].ToString() + "%')");
}
/*if (Request.QueryString["search"] != null)
* {
* command.CommandText="select * from product where product_name"
* }*/
DataTable dt = new DataTable();
SqlDataAdapter da = new SqlDataAdapter(command);
da.Fill(dt);
d1.DataSource = dt;
d1.DataBind();
}
protected void Page_Load(object sender, EventArgs e)
{
db = new DataAccess.Db();
if (Request.QueryString["id"] == null)
{
Response.Redirect("items.aspx");
}
else
{
id = Convert.ToInt32(Request.QueryString["id"].ToString());
string sql = "select * from [product] where product.Id='" + id.ToString() + "'";
SqlCommand cmd = db.executecommand(sql);
DataTable dt = new DataTable();
SqlDataAdapter da = new SqlDataAdapter(cmd);
da.Fill(dt);
d1.DataSource = dt;
d1.DataBind();
sql = "select * from cart where cart.product='" + id.ToString() + "' and cart.email='" + Session["user"] + "'";
cmd = db.executecommand(sql);
dt = new DataTable();
da = new SqlDataAdapter(cmd);
da.Fill(dt);
d2.DataSource = dt;
d2.DataBind();
}
}
protected void b2_Click(object sender, EventArgs e)
{
DataAccess.Db data = new DataAccess.Db();
string sql = "UPDATE product SET product_added=2 where Id='" + id.ToString() + "'";
data.executecommand(sql);
Response.Redirect("BooksRequests.aspx");
}
protected void Page_Load(object sender, EventArgs e)
{
db = new DataAccess.Db();
SqlCommand com = db.executecommand("select * from category");
DataTable dataTable = new DataTable();
SqlDataAdapter da = new SqlDataAdapter(com);
da.Fill(dataTable);
dd.DataSource = dataTable;
dd.DataBind();
}
protected void Page_Load(object sender, EventArgs e)
{
db = new DataAccess.Db();
if (Session["user"] != null)
{
SqlCommand command = db.executecommand("select * from [product] where product_developer='" + Session["user"] + "'");
DataTable dt = new DataTable();
SqlDataAdapter da = new SqlDataAdapter(command);
da.Fill(dt);
d1.DataSource = dt;
d1.DataBind();
}
else
{
Response.Redirect("login.aspx");
}
}
protected void Page_Load(object sender, EventArgs e)
{
db = new DataAccess.Db();
SqlCommand command;
command = db.executecommand("SELECT * FROM product WHERE product_added=0");
/*if (Request.QueryString["search"] != null)
* {
* command.CommandText="select * from product where product_name"
* }*/
DataTable dt = new DataTable();
SqlDataAdapter da = new SqlDataAdapter(command);
da.Fill(dt);
d1.DataSource = dt;
d1.DataBind();
}
protected void Button1_Click(object sender, EventArgs e)
{
SqlCommand t = db.executecommand("select * from registration where email='" + TextBox1.Text + "'AND password='******'AND status IS NULL");
db.OpenConnection();
DataTable dt = new DataTable();
SqlDataAdapter da = new SqlDataAdapter(t);
da.Fill(dt);
tot = Convert.ToInt32(dt.Rows.Count.ToString());
db.connection.Close();
if (tot > 0)
{
Session["user"] = TextBox1.Text;
Response.Redirect("items.aspx");
}
else
{
Label1.Text = "invalid email or password";
}
DataAccess.Db data = new DataAccess.Db();
SqlCommand sql = data.executecommand("select status from registration where email='" +
TextBox1.Text + "'AND password='******'");
data.connection.Open();
object result = sql.ExecuteScalar();
string res = Convert.ToString(result);
res = res.Trim();
if (res != null)
{
Label1.Text = "Error. " + res; data.connection.Close();
}
}
protected void Page_Load(object sender, EventArgs e)
{
db = new DataAccess.Db();
}
