protected void Page_Load(object sender, EventArgs e) { InitJs(); string autor = Request.Params["autor"]; string content = Request.Params["content"]; string order = Request.Params["order"]; if (Request.Params["sub_id"] != null) { Session["sub_id"] = Request.Params["sub_id"]; string sub_id = Session["sub_id"].ToString(); string author_id = Guid.Empty.ToString(); try { author_id = Membership.GetUser().ProviderUserKey.ToString(); } catch (Exception ex) { } string cmd = "SELECT Message.Id as [Id], [Description], Message.Date as [Date]," + " Message.LastUpdate as [LastUpdate], [UserName], [CategoryId], [Name] as [CategoryName], " + " CASE WHEN Message.AuthorId = @AuthorId THEN 'Author' ELSE 'NotAuthor' END as [Editable]" + " FROM [Message]" + " INNER JOIN [aspnet_Users] on [UserId] = Message.AuthorId" + " INNER JOIN [Pictures] on Pictures.PictureId = [IdPicture]" + " INNER JOIN [Category] on Pictures.CategoryId = Category.Id" + " WHERE [PictureId] = @SubId" + " ORDER BY [Date]"; MessageSqlDataSource.SelectCommand = cmd; MessageSqlDataSource.SelectParameters.Clear(); MessageSqlDataSource.SelectParameters.Add("SubId", sub_id); MessageSqlDataSource.SelectParameters.Add("AuthorId", author_id); MessageSqlDataSource.DataBind(); if (autor != null && content != null && order != null) { autor = Server.UrlDecode(autor); content = Server.UrlDecode(content); order = Server.UrlDecode(order); SearchMessage(autor, content, order); } cmd = "SELECT [Nume], [Data_adaugare], [Last_update], [CategoryId], [UserName], [Name] as [CategoryName] FROM [Pictures]" + " INNER JOIN [aspnet_Users] on [UserId] = [AutorId]" + " INNER JOIN [Category] on Category.Id = [CategoryId]" + " WHERE Pictures.PictureId = @SubId"; CurrentSubjectSqlDataSource.SelectCommand = cmd; CurrentSubjectSqlDataSource.SelectParameters.Clear(); CurrentSubjectSqlDataSource.SelectParameters.Add("SubId", sub_id); CurrentSubjectSqlDataSource.DataBind(); } else { Response.Redirect("~/Default.aspx"); } }
protected void SearchMessage(string UserFilter, string DescriptionFilter, string Order) { string sub_id = Session["sub_id"].ToString(); string author_id = Guid.Empty.ToString(); try { author_id = Membership.GetUser().ProviderUserKey.ToString(); } catch (Exception ex) { } string cmd = "SELECT Message.Id as [Id], [Description], Message.Date as [Date]," + " Message.LastUpdate as [LastUpdate], [UserName], [CategoryId], [Name] as [CategoryName], " + " CASE WHEN Message.AuthorId = @AuthorId THEN 'Author' ELSE 'NotAuthor' END as [Editable]" + " FROM [Message]" + " INNER JOIN [aspnet_Users] on [UserId] = Message.AuthorId" + " INNER JOIN [Pictures] on Pictures.PictureId = [IdPicture]" + " INNER JOIN [Category] on Pictures.CategoryId = Category.Id" + " WHERE [PictureId] = @SubId"; bool Descending = (Order == "Descending"); cmd += " AND LOWER([Description]) LIKE @DescriptionFilter"; cmd += " AND LOWER([UserName]) LIKE @UserFilter"; if (!Descending) { cmd += " ORDER BY [Date]"; } else { cmd += " ORDER BY [Date] DESC"; } MessageSqlDataSource.SelectCommand = cmd; MessageSqlDataSource.SelectParameters.Clear(); MessageSqlDataSource.SelectParameters.Add("SubId", sub_id); MessageSqlDataSource.SelectParameters.Add("AuthorId", author_id); MessageSqlDataSource.SelectParameters.Add("DescriptionFilter", "%" + DescriptionFilter + "%"); MessageSqlDataSource.SelectParameters.Add("UserFilter", "%" + UserFilter + "%"); MessageSqlDataSource.DataBind(); }