public HttpResponseMessage updateCliente([FromBody] clienteModel cliente) { try { using (SqlConnection conn = new SqlConnection(DatabaseConnectionString)) { SqlCommand cmd = new SqlCommand("UPDATE CLIENTE SET Nombre=@nombre, pApellido=@papellido, sApellido=@sapellido, Password=@password, Username=@username, Email=@email, Nacimiento=@nacimiento, Telefono=@telefono WHERE Cedula=@id", conn); cmd.Parameters.AddWithValue("@id", cliente.Cedula); cmd.Parameters.AddWithValue("@nombre", cliente.Nombre); cmd.Parameters.AddWithValue("@papellido", cliente.pApellido); cmd.Parameters.AddWithValue("@sapellido", cliente.sApellido); cmd.Parameters.AddWithValue("@password", cliente.Password); cmd.Parameters.AddWithValue("@username", cliente.Username); cmd.Parameters.AddWithValue("@email", cliente.Email); cmd.Parameters.AddWithValue("@nacimiento", cliente.Nacimiento); cmd.Parameters.AddWithValue("@telefono", cliente.Telefono); cmd.Connection = conn; conn.Open(); cmd.ExecuteReader(); var message = Request.CreateResponse(HttpStatusCode.Created, cliente); return(message); } } catch (Exception ex) { return(Request.CreateErrorResponse(HttpStatusCode.BadRequest, ex)); } }
public HttpResponseMessage deleteCliente([FromBody] clienteModel del) { try { using (SqlConnection conn = new SqlConnection(DatabaseConnectionString)) { SqlCommand cmd = new SqlCommand("UPDATE CLIENTE SET Estado=0 WHERE Cedula=@id", conn); cmd.Parameters.AddWithValue("@id", del.Cedula); cmd.Connection = conn; conn.Open(); cmd.ExecuteReader(); var message = Request.CreateResponse(HttpStatusCode.Created, del); return(message); } } catch (Exception ex) { return(Request.CreateErrorResponse(HttpStatusCode.BadRequest, ex)); } }
public HttpResponseMessage regCliente([FromBody] clienteModel cliente) { try { using (SqlConnection conn = new SqlConnection(DatabaseConnectionString)) { object user, cedula, estado; SqlCommand cmd1; cmd1 = new SqlCommand("SELECT Estado, Cedula, Username FROM CLIENTE WHERE Cedula=@id OR Username=@user"); cmd1.Parameters.AddWithValue("@id", cliente.Cedula); cmd1.Parameters.AddWithValue("@user", cliente.Username); cmd1.Connection = conn; conn.Open(); var reader = cmd1.ExecuteReader(); if (reader.Read()) { reader.Close(); var data = serial.singleserialize(cmd1.ExecuteReader()); data.TryGetValue("Estado", out estado); data.TryGetValue("Cedula", out cedula); data.TryGetValue("Username", out user); conn.Close(); if ((Convert.ToString(user).Equals(cliente.Username)) && (Convert.ToInt32(cedula) == cliente.Cedula) && (Convert.ToInt32(estado) == 1)) { return(Request.CreateResponse(HttpStatusCode.Conflict, "This user already exist!")); } else if ((Convert.ToString(user).Equals(cliente.Username)) && (Convert.ToInt32(cedula) == cliente.Cedula) && (Convert.ToInt32(estado) == 0)) { cmd1 = new SqlCommand("UPDATE CLIENTE SET Nombre=@nombre, pApellido=@papellido, sApellido=@sapellido, Password=@password, Email=@email, Nacimiento=@nacimiento, Telefono=@telefono, Estado=1 WHERE Cedula=@id", conn); cmd1.Parameters.AddWithValue("@id", cliente.Cedula); cmd1.Parameters.AddWithValue("@nombre", cliente.Nombre); cmd1.Parameters.AddWithValue("@papellido", cliente.pApellido); cmd1.Parameters.AddWithValue("@sapellido", cliente.sApellido); cmd1.Parameters.AddWithValue("@password", cliente.Password); cmd1.Parameters.AddWithValue("@email", cliente.Email); cmd1.Parameters.AddWithValue("@nacimiento", cliente.Nacimiento); cmd1.Parameters.AddWithValue("@telefono", cliente.Telefono); cmd1.Connection = conn; conn.Open(); cmd1.ExecuteReader(); var message = Request.CreateResponse(HttpStatusCode.Created, cliente); conn.Close(); return(message); } else if (Convert.ToInt32(cedula) == cliente.Cedula) { return(Request.CreateResponse(HttpStatusCode.BadRequest, "Identification already exist!")); } else if (Convert.ToString(user).Equals(cliente.Username)) { return(Request.CreateResponse(HttpStatusCode.BadGateway, "Username already exist!")); } return(null); } else { conn.Close(); SqlCommand cmd = new SqlCommand("INSERT INTO CLIENTE(Cedula, Nombre, pApellido, sApellido, Password, Username, Email, Nacimiento, Penalizacion, Direccion, Estado, Telefono) VALUES (@cedula,@nombre,@papellido,@sapellido,@password,@username,@email,@nacimiento,@penalizacion,@direccion,0, @telefono)", conn); cmd.Parameters.AddWithValue("@cedula", cliente.Cedula); cmd.Parameters.AddWithValue("@nombre", cliente.Nombre); cmd.Parameters.AddWithValue("@papellido", cliente.pApellido); cmd.Parameters.AddWithValue("@sapellido", cliente.sApellido); cmd.Parameters.AddWithValue("@password", cliente.Password); cmd.Parameters.AddWithValue("@username", cliente.Username); cmd.Parameters.AddWithValue("@email", cliente.Email); cmd.Parameters.AddWithValue("@nacimiento", cliente.Nacimiento); cmd.Parameters.AddWithValue("@penalizacion", cliente.Penalizacion); cmd.Parameters.AddWithValue("@direccion", cliente.Direccion); cmd.Parameters.AddWithValue("@telefono", cliente.Telefono); cmd.Connection = conn; conn.Open(); cmd.ExecuteReader(); var message = Request.CreateResponse(HttpStatusCode.Created, cliente); return(message); } } } catch (Exception ex) { return(Request.CreateErrorResponse(HttpStatusCode.BadRequest, ex)); } }