public static int UpdateAdmin(AdminDTO userDto) { string query = "UPDATE admin SET first_name = '" + userDto.FirstName + "',last_name = '" + userDto.LastName + "', tel_mobile = '" + userDto.Mobile + "', email = '" + userDto.Email + "', user_name = '" + userDto.UserName + "', password = SHA1('" + userDto.Password + "') WHERE id = " + userDto.Id; DataTable usersTable = DatabaseConnection.ConnectWithServer(query); if (usersTable != null) { return(1); } return(-1); }
public static int AddAdmin(AdminDTO userDto) { DateTime dateTime = DateTime.Now.Date; string query = "INSERT INTO admin (first_name, last_name, tel_mobile, " + "email, user_name, password, created_by) VALUES (" + "'" + userDto.FirstName + "','" + userDto.LastName + "','" + userDto.Mobile + "','" + userDto.Email + "','" + userDto.UserName + "',SHA1('" + userDto.Password + "'),'" + userDto.CreatedBy + "')"; DataTable usersTable = DatabaseConnection.ConnectWithServer(query); if (usersTable != null) { return(1); } return(-1); }