Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- protected void Page_Load(object sender, EventArgs e)
- {
- if (!IsPostBack)
- {
- usernameLabel.Text = Session["UserName"] as String;
- passwordTextBox.Text = Session["Password"] as String;
- SqlConnection con = new SqlConnection();
- con.ConnectionString = "Data Source=itksqlexp8; ; Initial Catalog=mmartza_ConservationSchool;Integrated Security=True;Pooling=False";
- con.Open();
- //SqlCommand cmd = new SqlCommand("Select firstName from users where username='" + usernameLabel.Text + "' and password='" + passwordTextBox.Text + "' ", con);
- //SqlDataReader DR1 = cmd.ExecuteReader();
- //if (DR1.Read())
- //{
- // firstNameTextBox.Text = DR1.GetValue(0).ToString();
- //}
- SqlCommand cmd = new SqlCommand("Select * from users where username='" + usernameLabel.Text + "' and password='" + passwordTextBox.Text + "' ", con);
- SqlDataReader DR1 = cmd.ExecuteReader();
- if (DR1.Read())
- {
- usernameLabel.Text = DR1.GetValue(0).ToString();
- firstNameTextBox.Text = DR1.GetValue(1).ToString();
- lastNameTextBox.Text = DR1.GetValue(2).ToString();
- addressTextBox.Text = DR1.GetSqlValue(3).ToString();
- passwordTextBox.Text = DR1.GetSqlValue(4).ToString();
- verifyPasswordTextBox.Text = DR1.GetSqlValue(4).ToString();
- homePhoneNumberTextBox.Text = DR1.GetValue(5).ToString();
- cellPhoneNumberTextBox.Text = DR1.GetSqlValue(6).ToString();
- }
- con.Close();
- }
- }
- protected void updateButton_Click(object sender, EventArgs e)
- {
- SqlConnection con = new SqlConnection();
- con.ConnectionString = "Data Source=itksqlexp8; ; Initial Catalog=mmartza_ConservationSchool;Integrated Security=True;Pooling=False";
- //con.Open();
- //SqlCommand cmd = new SqlCommand("Update users set firstName='" + firstNameTextBox.Text + "' where username='" + usernameLabel.Text + "'", con);
- //cmd.Parameters.AddWithValue("@firstName", firstNameTextBox.Text);
- //cmd.ExecuteNonQuery();
- //con.Close();
- //int rowsAffected = -1;
- //string firstName = firstNameTextBox.Text;
- string username = usernameLabel.Text;
- SqlCommand cmd = new SqlCommand("UPDATE users SET firstName = @firstName, lastName = @lastName, address = @address, cellphone = @cellphone, homephone = @homephone WHERE username ='" + username + "' ", con);
- cmd.Parameters.AddWithValue("@firstName", firstNameTextBox.Text);
- // cmd.Parameters.AddWithValue("firstName", firstNameTextBox.Text);
- cmd.Parameters.AddWithValue("@lastName", lastNameTextBox.Text);
- cmd.Parameters.AddWithValue("@address", addressTextBox.Text);
- cmd.Parameters.AddWithValue("@cellPhone", cellPhoneNumberTextBox.Text);
- cmd.Parameters.AddWithValue("@homePhone", homePhoneNumberTextBox.Text);
- //cmd.Parameters.AddWithValue("username", usernameLabel.Text);
- try
- {
- System.Data.SqlClient.SqlDataReader reader;
- // open a connection with sqldatabase
- con.Open();
- // execute sql command and store a return values in reade
- reader = cmd.ExecuteReader();
- errorLabel.Text = "Account has been updated";
- //rowsAffected = cmd.ExecuteNonQuery();
- // cmd.Dispose();
- }
- catch (Exception ex)
- {
- errorLabel.Text = "Error: " + ex.Message;
- con.Close();
- }
- //rowsAffected.Equals(1);
- // Server.Transfer("Homepage.aspx", true);
- }
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement