// Make Sure Viewer is Author
public void CheckAuthor()
{
SqlConnection sqlConnAuth = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString);
SqlCommand cmdauth = new SqlCommand("SELECT tbl_ListsMaster.UserId FROM tbl_ListsMaster WHERE tbl_ListsMaster.ListId ='" + grabListId() + "'", sqlConnAuth);
cmdauth.Connection.Open();
SqlDataReader CheckAuthor;
CheckAuthor = cmdauth.ExecuteReader();
while (CheckAuthor.Read())
{
this.lb_AuthorId.Text = CheckAuthor["UserId"].ToString();
}
cmdauth.Connection.Close();
cmdauth.Connection.Dispose();
if (User.Identity.IsAuthenticated == true)
{
// Get UserID
this.lb_UserId.Text = FetchUser.UserID();
}
else
{
this.lb_UserId.Text = "Guest";
}
if (this.lb_AuthorId.Text == this.lb_UserId.Text)
{
// User is Author
}
else
{
// User is NOT Author
Server.Transfer("/Default.aspx");
}
}
protected void btn_addfolder_Click(object sender, EventArgs e)
{
if (Page.IsValid)
{
// Insert Folder to DB
SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString);
SqlCommand cmd = new SqlCommand("INSERT INTO tbl_FoldersMaster (UserId, FolderName)VALUES(@UserId, @FolderName)", sqlConn);
cmd.Parameters.Add("@UserId", SqlDbType.VarChar, 255).Value = FetchUser.UserID();
cmd.Parameters.Add("@FolderName", SqlDbType.VarChar, 255).Value = this.tb_addfolder.Text;
cmd.Connection.Open();
cmd.ExecuteNonQuery();
cmd.Connection.Close();
cmd.Connection.Dispose();
// Clear Textbox
this.tb_addfolder.Text = "";
// Call Update Panel to avoid duplicates
BindFolderList();
}
}
//// END LINK BUTTONS ////
//// BEGIN BUTTONS /////
protected void btn_addlink_Click(object sender, EventArgs e)
{
if (Page.IsValid)
{
// Insert Favorite to DB
SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString);
SqlCommand cmd = new SqlCommand("INSERT INTO tbl_LinksMaster (UserId, LinkUrl, LinkName, LinkDescription, LinkPrivate)VALUES(@UserId, @LinkURL, @LinkTitle, @LinkDescription, @LinkPrivate);SELECT @@IDENTITY", sqlConn);
cmd.Parameters.Add("@UserId", SqlDbType.VarChar, 255).Value = FetchUser.UserID();
cmd.Parameters.Add("@LinkURL", SqlDbType.VarChar, 255).Value = this.tb_LinkUrl.Text;
cmd.Parameters.Add("@LinkTitle", SqlDbType.VarChar, 255).Value = this.tb_LinkTitle.Text;
cmd.Parameters.Add("@LinkDescription", SqlDbType.VarChar).Value = this.tb_Description.Text;
cmd.Parameters.Add("@LinkPrivate", SqlDbType.Bit, 1).Value = this.cb_isprivate.Checked;
cmd.Connection.Open();
string LinkIdReturn = cmd.ExecuteScalar().ToString();
cmd.Connection.Close();
cmd.Connection.Dispose();
// Add Link to List
SqlConnection sqlConn2 = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString);
SqlCommand add = new SqlCommand("INSERT INTO tbl_ListsMembers (LinkId, ListId)VALUES('" + LinkIdReturn + "','" + grabListId() + "')", sqlConn2);
add.Connection.Open();
add.ExecuteNonQuery();
add.Connection.Close();
add.Connection.Dispose();
//Redirect to self to avoid duplicates
BindLinkList();
this.tb_LinkUrl.Text = "";
this.tb_LinkTitle.Text = "";
this.tb_Description.Text = "";
}
}
private void BindFolders(DropDownList ddl_folderMove)
{
string FolderSelectSQL = "SELECT UPPER(FolderName) as FolderName, FolderId FROM tbl_FoldersMaster WHERE UserId ='" + FetchUser.UserID() + "' ORDER BY FolderName ASC";
// Use SQL Statement to Select Records from DB
SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString);
SqlCommand cmd = new SqlCommand(FolderSelectSQL, sqlConn);
cmd.Connection.Open();
SqlDataReader RepValues;
RepValues = cmd.ExecuteReader();
ddl_folderMove.DataSource = RepValues;
ddl_folderMove.DataTextField = "FolderName";
ddl_folderMove.DataValueField = "FolderId";
ddl_folderMove.DataBind();
cmd.Connection.Close();
ddl_folderMove.Items.Insert(0, "<- Select Destination Folder ->");
cmd.Connection.Dispose();
}
//// END LIST REPEATER EVENTS ////
//// BEGIN LIST UPDATE PANEL EVENTS ////
protected void udp_ListRepeater_PreRender(object sender, EventArgs e)
{
// Set Initial ListSort Session
if (Session["ListSort"] == null)
{
Session["ListSort"] = "0";
}
// Get Session Variable
string sFolderId = Session["FolderId"].ToString();
string sListSort = Session["ListSort"].ToString();
// Instantiate SQL String
string ListSelectSQL;
// Select SQL Based on Session Variable
if (sFolderId == "0" || sFolderId == null || sFolderId.Length == 0)
{
// Select SQL Based on Session Variable
if (sListSort == "NEW")
{
ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_ListsMaster.ListDescription, tbl_ListsMaster.ListDate FROM tbl_ListsMaster WHERE tbl_ListsMaster.UserId ='" + FetchUser.UserID() + "' ORDER BY tbl_ListsMaster.ListDate DESC";
}
else if (sListSort == "OLD")
{
ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_ListsMaster.ListDescription, tbl_ListsMaster.ListDate FROM tbl_ListsMaster WHERE tbl_ListsMaster.UserId ='" + FetchUser.UserID() + "' ORDER BY tbl_ListsMaster.ListDate ASC";
}
else if (sListSort == "DESC")
{
ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_ListsMaster.ListDescription FROM tbl_ListsMaster WHERE tbl_ListsMaster.UserId ='" + FetchUser.UserID() + "' ORDER BY tbl_ListsMaster.ListName DESC";
}
else //ASC or Default
{
ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_ListsMaster.ListDescription FROM tbl_ListsMaster WHERE tbl_ListsMaster.UserId ='" + FetchUser.UserID() + "' ORDER BY tbl_ListsMaster.ListName ASC";
}
}
else
{
// Select SQL Based on Session Variable
if (sListSort == "NEW")
{
ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_FoldersMembers.FolderId, tbl_ListsMaster.ListDescription, tbl_ListsMaster.ListDate FROM tbl_ListsMaster, tbl_FoldersMembers WHERE tbl_FoldersMembers.FolderId ='" + sFolderId + "' AND tbl_FoldersMembers.ItemId = tbl_ListsMaster.ListId ORDER BY tbl_ListsMaster.ListDate DESC";
}
else if (sListSort == "OLD")
{
ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_FoldersMembers.FolderId, tbl_ListsMaster.ListDescription, tbl_ListsMaster.ListDate FROM tbl_ListsMaster, tbl_FoldersMembers WHERE tbl_FoldersMembers.FolderId ='" + sFolderId + "' AND tbl_FoldersMembers.ItemId = tbl_ListsMaster.ListId ORDER BY tbl_ListsMaster.ListDate ASC";
}
else if (sListSort == "DESC")
{
ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_FoldersMembers.FolderId, tbl_ListsMaster.ListDescription FROM tbl_ListsMaster, tbl_FoldersMembers WHERE tbl_FoldersMembers.FolderId ='" + sFolderId + "' AND tbl_FoldersMembers.ItemId = tbl_ListsMaster.ListId ORDER BY tbl_ListsMaster.ListName DESC";
}
else //ASC or Default
{
ListSelectSQL = "SELECT tbl_ListsMaster.ListId, tbl_ListsMaster.ListName, tbl_FoldersMembers.FolderId, tbl_ListsMaster.ListDescription FROM tbl_ListsMaster, tbl_FoldersMembers WHERE tbl_FoldersMembers.FolderId ='" + sFolderId + "' AND tbl_FoldersMembers.ItemId = tbl_ListsMaster.ListId ORDER BY tbl_ListsMaster.ListName ASC";
}
}
// Use SQL Statement to Select Records from DB
SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString);
SqlCommand cmd = new SqlCommand(ListSelectSQL, sqlConn);
cmd.Connection.Open();
SqlDataReader RepValues;
RepValues = cmd.ExecuteReader();
this.List_Repeater.DataSource = RepValues;
this.List_Repeater.DataBind();
cmd.Connection.Close();
cmd.Connection.Dispose();
}
//// END FOLDER DATALIST EVENTS ////
//// BEGIN FOLDER DATALIST DATABIND ////
protected void BindFolderList()
{
// Set Initial FolderSort Session
if (Session["FolderSort"] == null)
{
Session["FolderSort"] = "0";
}
// Get Sort Order
string sFolderSort = Session["FolderSort"].ToString();
// Instantiate SQL String
string FolderSelectSQL;
// Select SQL Based on Session Variable
if (sFolderSort == "NEW")
{
FolderSelectSQL = "SELECT UPPER(FolderName) as FolderName, FolderId, FolderDate FROM tbl_FoldersMaster WHERE UserId ='" + FetchUser.UserID() + "' ORDER BY FolderDate DESC";
}
else if (sFolderSort == "OLD")
{
FolderSelectSQL = "SELECT UPPER(FolderName) as FolderName, FolderId, FolderDate FROM tbl_FoldersMaster WHERE UserId ='" + FetchUser.UserID() + "' ORDER BY FolderDate ASC";
}
else if (sFolderSort == "DESC")
{
FolderSelectSQL = "SELECT UPPER(FolderName) as FolderName, FolderId FROM tbl_FoldersMaster WHERE UserId ='" + FetchUser.UserID() + "' ORDER BY FolderName DESC";
}
else //ASC or Default
{
FolderSelectSQL = "SELECT UPPER(FolderName) as FolderName, FolderId FROM tbl_FoldersMaster WHERE UserId ='" + FetchUser.UserID() + "' ORDER BY FolderName ASC";
}
// Use SQL Statement to Select Records from DB
SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString);
SqlCommand cmd = new SqlCommand(FolderSelectSQL, sqlConn);
cmd.Connection.Open();
SqlDataReader RepValues;
RepValues = cmd.ExecuteReader();
this.Folder_Datalist.DataSource = RepValues;
this.Folder_Datalist.DataBind();
cmd.Connection.Close();
cmd.Connection.Dispose();
}
protected void btn_addlist_Click(object sender, EventArgs e)
{
if (Page.IsValid)
{
// Insert List to DB and Return New ID
SqlConnection sqlConn = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString);
SqlCommand cmd = new SqlCommand("INSERT INTO tbl_ListsMaster (UserId, ListName, ListDescription)VALUES(@UserId, @ListName, @ListDescription);SELECT @@IDENTITY", sqlConn);
cmd.Parameters.Add("@UserId", SqlDbType.VarChar, 255).Value = FetchUser.UserID();
cmd.Parameters.Add("@ListName", SqlDbType.VarChar, 255).Value = this.tb_addlist.Text;
cmd.Parameters.Add("@ListDescription", SqlDbType.VarChar, 255).Value = this.tb_list_descrip.Text;
cmd.Connection.Open();
Int32 ListId = Convert.ToInt32(cmd.ExecuteScalar());
cmd.Connection.Close();
cmd.Connection.Dispose();
// Check for null folderid ie HOME folder
string sFolderId = Session["FolderId"].ToString();
if (sFolderId == "0" || sFolderId == null || sFolderId.Length == 0)
{
// Clear Fields
this.tb_addlist.Text = "";
this.tb_list_descrip.Text = "";
}
// Has FolderId so Adding List to Folder
SqlConnection sqlConn2 = new SqlConnection(ConfigurationManager.ConnectionStrings["LocalSqlServer"].ConnectionString);
SqlCommand add = new SqlCommand("INSERT INTO tbl_FoldersMembers (FolderId, ItemId)VALUES(@FolderId, @ItemId)", sqlConn2);
add.Parameters.Add("@FolderId", SqlDbType.VarChar, 255).Value = sFolderId;
add.Parameters.Add("@ItemId", SqlDbType.VarChar, 255).Value = ListId;
add.Connection.Open();
add.ExecuteNonQuery();
add.Connection.Close();
add.Connection.Dispose();
// Clear Fields
this.tb_addlist.Text = "";
this.tb_list_descrip.Text = "";
}
}