private static decimal CalcTotal(IEnumerable <OrderItem> list) { decimal total = 0; foreach (var item in list) { var si = new SqlIntegrate(); si.AddParameter("@p1", SqlIntegrate.DataType.BigInt, item.id); total += item.quantity * Convert.ToDecimal(si.Query("SELECT [price] FROM [Menu] WHERE [ID]=@p1")); } return(total); }
public IActionResult Login(string username, string password) { var si = new SqlIntegrate(); si.AddParameter("@p1", SqlIntegrate.DataType.VarChar, username); si.AddParameter("@p2", SqlIntegrate.DataType.VarChar, password); var result = Convert.ToInt32(si.Query("SELECT COUNT(*) FROM [User] WHERE [username]=@p1 AND [password]=@p2")); if (result == 1) { HttpContext.Session.SetString("user", username); return(Ok()); } return(NotFound()); }