public void ShoppingCart(Model.ShippingCar Data) { string sql = ""; if (Data.Action == "Insert") { sql = "insert into dbo.Shopping_Car(Book_ID, Customer_Email, Book_Name, Book_Price, Book_Quantity,Book_Img,Order_Quantity) values ('" + Data.Book_ID + "','" + Data.Customer_Email + "','" + Data.Book_Name + "','" + Data.Book_Price + "','" + Data.Book_Quantity + "','" + Data.Book_Img + "','1')"; } else { sql = "delete from dbo.Shopping_Car where Customer_Email = '" + Data.Customer_Email + "' and Book_ID = '" + Data.Book_ID + "'"; } SqlConnection conn = new SqlConnection(ConfigurationManager.ConnectionStrings["DBconn"].ConnectionString); using (conn) { conn.Open(); SqlCommand cmd_insert = new SqlCommand(sql, conn); SqlDataAdapter sqlAdapter_check = new SqlDataAdapter(cmd_insert); try { cmd_insert.ExecuteNonQuery(); }catch (Exception e) { conn.Close(); } conn.Close(); } }
public ActionResult Delete(string Book_ID) { Service.SQL_ShippingCar SSC = new Service.SQL_ShippingCar(); Model.ShippingCar Data = new Model.ShippingCar(); Data.Customer_Email = Request.Cookies["cookie"]["Account"].ToString(); if (Data.Customer_Email == null) { return(RedirectToAction("Index", "Login")); } Data.Action = "Delete"; Data.Book_ID = Book_ID; SSC.ShoppingCart(Data); return(RedirectToAction("Index", "CheckOut", new { Order_Quantity = 1 })); }
// GET: Shopping public ActionResult Index(string Book_ID, string Book_Name, string Book_Price, int Book_Quantity, string Search, string Book_Img) { Service.SQL_ShippingCar SSC = new Service.SQL_ShippingCar(); Model.ShippingCar Data = new Model.ShippingCar(); Data.Customer_Email = Request.Cookies["cookie"]["Account"].ToString(); Data.Book_ID = Book_ID; Data.Book_Name = Book_Name; Data.Book_Price = Book_Price; Data.Book_Quantity = Book_Quantity; Data.Book_Img = Book_Img; Data.Action = "Insert"; SSC.ShoppingCart(Data); return(RedirectToAction("index", "Inquire", new { Book_Search = Search })); }