using System;using System.Collections;using Microsoft.AspNetCore.Mvc;using

1. using System;
2. using System.Collections;
3. using Microsoft.AspNetCore.Mvc;
4. using BarbarAPI.Models;
5. using System.Configuration;
6. using System.Diagnostics;
7. //using MySql.Data.MySqlClient;
8. using System.Data.SqlClient;
9.  
10. namespace BarbarAPI.Controllers
11. {
12. [Route("api/[controller]")]
13. [ApiController]
14. public class BarberController : ControllerBase
15. {
16. // GET api/barber
17. [HttpGet]
18. public ArrayList Get()
19. {
20. ArrayList barbers = new ArrayList();
21.  
22. SqlConnection conn = null;
23. SqlCommand comm;
24. SqlDataReader reader = null;
25.  
26. String connectionString = ConfigurationManager.ConnectionStrings["azure"].ConnectionString;
27.  
28. String query = "SELECT * FROM barber;";
29.  
30. try
31. {
32. conn = new SqlConnection(connectionString);
33. conn.Open();
34. Debug.Write("CONNECTION SUCCESSFUL");
35. }
36. catch (Exception e)
37. {
38. Debug.Write("FAILED TO CONNECT: " + e);
39. }
40.  
41. try
42. {
43. comm = new SqlCommand(query, conn);
44. comm.ExecuteNonQuery();
45. reader = comm.ExecuteReader();
46. while (reader.Read())
47. {
48. Barber barber = new Barber();
49. barber.id = reader.GetInt32(0);
50. barber.username = reader.GetString(1);
51. barber.firstname = reader.GetString(2);
52. barber.surname = reader.GetString(3);
53. barber.email = reader.GetString(4);
54. barber.password = reader.GetString(5);
55. barber.avatar = reader.GetString(6);
56. barber.login_code = reader.GetString(7);
57. barbers.Add(barber);
58. }
59. Debug.Write("INSERT SUCCESSFUL");
60. conn.Close();
61. Debug.Write("CONNECTION CLOSED");
62. }
63. catch (Exception e)
64. {
65. Debug.Write("FAILED TO INSERT: " + e);
66. }
67.  
68. return barbers;
69. }
70.  
71. // GET api/barber/5
72. [HttpGet("{id}")]
73. public Barber Get(int id)
74. {
75. Barber barber = new Barber();
76.  
77. SqlConnection conn = null;
78. SqlCommand comm;
79. SqlDataReader reader = null;
80.  
81. String connectionString = ConfigurationManager.ConnectionStrings["azure"].ConnectionString;
82.  
83. String query = "SELECT * FROM barber WHERE barber_id = '" + id + "';";
84.  
85. try
86. {
87. conn = new SqlConnection(connectionString);
88. conn.Open();
89. Debug.Write("CONNECTION SUCCESSFUL");
90. }
91. catch (Exception e)
92. {
93. Debug.Write("FAILED TO CONNECT: " + e);
94. }
95.  
96. try
97. {
98. comm = new SqlCommand(query, conn);
99. comm.ExecuteNonQuery();
100. reader = comm.ExecuteReader();
101. while (reader.Read())
102. {
103. barber.id = reader.GetInt32(0);
104. barber.username = reader.GetString(1);
105. barber.firstname = reader.GetString(2);
106. barber.surname = reader.GetString(3);
107. barber.email = reader.GetString(4);
108. barber.password = reader.GetString(5);
109. barber.avatar = reader.GetString(6);
110. barber.login_code = reader.GetString(7);
111. }
112. Debug.Write("INSERT SUCCESSFUL");
113. conn.Close();
114. Debug.Write("CONNECTION CLOSED");
115. }
116. catch (Exception e)
117. {
118. Debug.Write("FAILED TO INSERT: " + e);
119. }
120.  
121. return barber;
122. }
123.  
124. // POST api/barber
125. [HttpPost]
126. public String Post([FromBody] Barber barber)
127. {
128. SqlConnection conn = null;
129. SqlCommand comm;
130.  
131. String connectionString = ConfigurationManager.ConnectionStrings["azure"].ConnectionString;
132.  
133. String query = "INSERT INTO barber(barber_username,barber_name,barber_surname,barber_email," +
134. "barber_password,barber_avatar,login_code) VALUES ('" + barber.username + "','" +
135. barber.firstname + "','" + barber.surname + "','" + barber.email + "','" + barber.password + "','" +
136. barber.avatar + "','" + barber.login_code + "'); ";
137.  
138. try
139. {
140. conn = new SqlConnection(connectionString);
141. conn.Open();
142. Debug.Write("CONNECTION SUCCESSFUL");
143. }
144. catch (Exception e)
145. {
146. Debug.Write("FAILED TO CONNECT: " + e);
147. }
148.  
149. try
150. {
151. comm = new SqlCommand(query, conn);
152. comm.ExecuteNonQuery();
153. Debug.Write("INSERT SUCCESSFUL");
154. conn.Close();
155. Debug.Write("CONNECTION CLOSED");
156. Exception exception = new Exception();
157. return "";
158. }
159. catch (Exception e)
160. {
161. Debug.Write("FAILED TO INSERT: " + e);
162. return query;
163. }
164.  
165.  
166. }
167.  
168. // PUT api/barber/5
169. [HttpPut("{id}")]
170. public void Put(int id, [FromBody] string value)
171. {
172. }
173.  
174. // DELETE api/barber/5
175. [HttpDelete("{id}")]
176. public void Delete(int id)
177. {
178. }
179.  
180. //GET api/barber/code
181. [HttpPost("code")]
182. public String ValidateCode([FromBody] String code)
183. {
184. SqlConnection conn = null;
185. SqlCommand comm;
186. SqlDataReader reader = null;
187. String codeObj = "";
188.  
189. String connectionString = ConfigurationManager.ConnectionStrings["azure"].ConnectionString;
190.  
191. String query = "SELECT * FROM codes WHERE code = '"+code+"'; ";
192.  
193. try
194. {
195. conn = new SqlConnection(connectionString);
196. conn.Open();
197. Debug.Write("CONNECTION SUCCESSFUL");
198. }
199. catch (Exception e)
200. {
201. Debug.Write("FAILED TO CONNECT: " + e);
202. }
203.  
204. try
205. {
206. comm = new SqlCommand(query, conn);
207. comm.ExecuteNonQuery();
208. reader = comm.ExecuteReader();
209.  
210. while (reader.Read())
211. {
212. codeObj = "{\"id\":\"" + reader.GetInt32(0)+"\",";
213. codeObj = codeObj + "\"code\":\""+ reader.GetString(1)+"\"}";
214.  
215. }
216. if (codeObj.Equals(""))
217. {
218. codeObj = "invalid code";
219. }
220. conn.Close();
221. Debug.Write("CONNECTION CLOSED");
222. return codeObj;
223. }
224. catch (Exception e)
225. {
226. Debug.Write(e);
227. return e.ToString();
228. }
229. }
230.  
231.  
232. }
233. }