HILFE SQL
MAIN.MASTER
<%@ Master Language="C#" AutoEventWireup="true" CodeFile="main.master.cs" Inherits="main" %>
<!DOCTYPE html>
<html>
<head runat="server">
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<title>Céline Bürge</title>
<link href="style.css" rel="stylesheet" />
<asp:ContentPlaceHolder id="head" runat="server">
</asp:ContentPlaceHolder>
</head>
<body>
<form id="form1" runat="server">
<header>
ASP.NET UND SQL<br />
"Name Vorname"
</header>
<nav>
<asp:Menu ID="Menu1" runat="server" ForeColor="White" Orientation="Horizontal">
<Items>
<asp:MenuItem NavigateUrl="~/bestellen.aspx" Text="Bestellen" Value="Bestellen"></asp:MenuItem>
<asp:MenuItem NavigateUrl="~/admin.aspx" Text="Admin" Value="Admin"></asp:MenuItem>
</Items>
<StaticHoverStyle ForeColor="#60D6A9" />
</asp:Menu>
</nav>
<div id="content">
<asp:ContentPlaceHolder id="ContentPlaceHolder1" runat="server"></asp:ContentPlaceHolder>
</div>
</form>
</body>
</html>
BESTELLEN.ASPX
<%@ Page Title="" Language="C#" MasterPageFile="~/main.master" AutoEventWireup="true" CodeFile="bestellen.aspx.cs" Inherits="bestellen" %>
<asp:Content ID="Content1" ContentPlaceHolderID="head" Runat="Server">
</asp:Content>
<asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" Runat="Server">
<h1>Bestellung</h1>
<asp:GridView ID="GridView1" runat="server" AutoGenerateColumns="False" DataKeyNames="ID_Artikelnummer" DataSourceID="sqlTest">
<Columns>
<asp:BoundField DataField="ID_Artikelnummer" HeaderText="Artikelnummer" InsertVisible="False" ReadOnly="True" SortExpression="ID_Artikelnummer" />
<asp:BoundField DataField="Artikelname" HeaderText="Artikelname" SortExpression="Artikelname" />
<asp:BoundField DataField="Artikelpreis" HeaderText="Artikelpreis" SortExpression="Artikelpreis" />
</Columns>
</asp:GridView>
<asp:SqlDataSource ID="sqlTest" runat="server" ConnectionString="<%$ ConnectionStrings:conTest %>" SelectCommand="SELECT * FROM [tabArtikel] ORDER BY [ID_Artikelnummer]"></asp:SqlDataSource>
<h2>Bestellung aufgeben</h2>
<p>
Kundenname: <asp:TextBox ID="txtKuNa" runat="server"></asp:TextBox>
</p>
<p>
Kundenvorname: <asp:TextBox ID="txtKuVor" runat="server"></asp:TextBox>
</p>
<p>
Artikelnummer: <asp:TextBox ID="txtArtNr" runat="server"></asp:TextBox> bitte oben auslesen</p>
<p>
Artikelanzahl: <asp:TextBox ID="txtArtAnz" runat="server"></asp:TextBox>
</p>
<asp:Button ID="btnBestellen" runat="server" Text="Bestellen" OnClick="btnBestellen_Click" />
</asp:Content>
LOGIN.ASPX
<%@ Page Title="" Language="C#" MasterPageFile="~/main.master" AutoEventWireup="true" CodeFile="login.aspx.cs" Inherits="login" %>
<asp:Content ID="Content1" ContentPlaceHolderID="head" Runat="Server">
</asp:Content>
<asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" Runat="Server">
<p>Benutzername: <asp:TextBox ID="txtBen" runat="server"></asp:TextBox></p>
<p>Passwort <asp:TextBox ID="txtPW" textmode="Password" runat="server"></asp:TextBox></p>
<asp:Button ID="btnLogin" runat="server" Text="Login" OnClick="btnLogin_Click" />
</asp:Content>
ADMIN.ASPX
<%@ Page Title="" Language="C#" MasterPageFile="~/main.master" AutoEventWireup="true" CodeFile="admin.aspx.cs" Inherits="admin" %>
<asp:Content ID="Content1" ContentPlaceHolderID="head" runat="Server">
</asp:Content>
<asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" runat="Server">
<h1>Bestellung</h1>
<asp:GridView ID="GridView1" runat="server" AutoGenerateColumns="False" DataKeyNames="ID_Artikelnummer" DataSourceID="sqlTest">
<Columns>
<asp:BoundField DataField="ID_Artikelnummer" HeaderText="Artikelnummer" InsertVisible="False" ReadOnly="True" SortExpression="ID_Artikelnummer" />
<asp:BoundField DataField="Artikelname" HeaderText="Artikelname" SortExpression="Artikelname" />
<asp:BoundField DataField="Artikelpreis" HeaderText="Artikelpreis" SortExpression="Artikelpreis" />
</Columns>
</asp:GridView>
<asp:SqlDataSource ID="sqlTest" runat="server" ConnectionString="<%$ ConnectionStrings:conTest %>" SelectCommand="SELECT * FROM [tabArtikel] ORDER BY [ID_Artikelnummer]"></asp:SqlDataSource>
<h2>Artikel löschen</h2>
<p>
Artikelnummer eingeben:
<asp:TextBox ID="txtloschen" runat="server"></asp:TextBox> <asp:Button ID="btnloschen" runat="server" Text="Löschen" OnClick="btnloschen_Click" />
</p>
<h2>Artikel editieren</h2>
<p>
Artikelnummer: <asp:TextBox ID="txtArtNr" runat="server"></asp:TextBox>
</p>
<p>
Artikelname: <asp:TextBox ID="txtArtNa" runat="server"></asp:TextBox>
</p>
<p>
Artikelpreis: <asp:TextBox ID="txtArtPr" runat="server"></asp:TextBox>
</p>
<asp:Button ID="btnedit" runat="server" Text="Editieren" OnClick="btnedit_Click" />
<h2>Logout</h2>
<asp:Button ID="btnlogout" runat="server" Text="Logout" OnClick="btnlogout_Click" />
</asp:Content>
BESTELLEN.ASPX.CS
using System;
using System.Collections.Generic;
using System.Configuration;
using System.Data.SqlClient;
using System.Linq;
using System.Web;
using System.Web.UI;
using System.Web.UI.WebControls;
public partial class bestellen : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
}
protected void btnBestellen_Click(object sender, EventArgs e)
{
//Verbindung zur DB herstellen
SqlConnection conDBTest = new SqlConnection(ConfigurationManager.ConnectionStrings["conTest"].ConnectionString);
//SqlCommand vorbereiten, Verbindung zur Tabelle mit SQL - Befehl
SqlCommand comDemoInsert = new SqlCommand("INSERT INTO tabBestellung (Kundenname, Kundenvorname, Artikelnummer, Artikelanzahl) VALUES (@Kundenname, @Kundenvorname, @Artikelnummer, @Artikelanzahl)");
comDemoInsert.Connection = conDBTest;
comDemoInsert.Parameters.AddWithValue("@Kundenname", this.txtKuNa.Text);
comDemoInsert.Parameters.AddWithValue("@Kundenvorname", this.txtKuVor.Text);
comDemoInsert.Parameters.AddWithValue("@Artikelnummer", this.txtArtNr.Text);
comDemoInsert.Parameters.AddWithValue("@Artikelanzahl", this.txtArtAnz.Text);
comDemoInsert.Connection.Open();
comDemoInsert.ExecuteNonQuery();
comDemoInsert.Connection.Close();
comDemoInsert.Dispose();
conDBTest.Dispose();
conDBTest.Close();
//TXT leeren
txtKuNa.Text = "";
txtKuVor.Text = "";
txtArtAnz.Text = "";
txtArtNr.Text = "";
}
}
ADMIN.ASPX.CS
using System;
using System.Collections.Generic;
using System.Configuration;
using System.Data.SqlClient;
using System.Linq;
using System.Web;
using System.Web.UI;
using System.Web.UI.WebControls;
public partial class admin : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
if (Session["Loggin"] !=null && Session["Loggin"].ToString() == "true")
{
}
else
{
Response.Redirect("login.aspx");
}
}
protected void btnloschen_Click(object sender, EventArgs e)
{
//Verbindung zur DB herstellen
SqlConnection conDBTest = new SqlConnection(ConfigurationManager.ConnectionStrings["conTest"].ConnectionString);
//SqlCommand vorbereiten, Verbindung zur Tabelle mit SQL - Befehl
SqlCommand comDemoDelete = new SqlCommand("DELETE FROM tabArtikel WHERE ID_Artikelnummer = @ID_Artikelnummer");
comDemoDelete.Connection = conDBTest;
comDemoDelete.Parameters.AddWithValue("@ID_Artikelnummer", this.txtloschen.Text);
comDemoDelete.Connection.Open();
comDemoDelete.ExecuteNonQuery();
comDemoDelete.Connection.Close();
comDemoDelete.Dispose();
conDBTest.Dispose();
conDBTest.Close();
Response.Redirect("admin.aspx");
}
protected void btnedit_Click(object sender, EventArgs e)
{
//Verbindung zur DB herstellen
SqlConnection conDBTest = new SqlConnection(ConfigurationManager.ConnectionStrings["conTest"].ConnectionString);
//SqlCommand vorbereiten, Verbindung zur Tabelle mit SQL - Befehl
SqlCommand comDemoUpdate = new SqlCommand("UPDATE tabArtikel SET Artikelname = @Artikelname, Artikelpreis = @Artikelpreis WHERE ID_Artikelnummer = @ID_Artikelnummer");
comDemoUpdate.Connection = conDBTest;
comDemoUpdate.Parameters.AddWithValue("@ID_Artikelnummer", this.txtArtNr.Text);
comDemoUpdate.Parameters.AddWithValue("@Artikelpreis", this.txtArtPr.Text);
comDemoUpdate.Parameters.AddWithValue("@Artikelname", this.txtArtNa.Text);
comDemoUpdate.Connection.Open();
comDemoUpdate.ExecuteNonQuery();
comDemoUpdate.Connection.Close();
comDemoUpdate.Dispose();
conDBTest.Dispose();
conDBTest.Close();
Response.Redirect("admin.aspx");
}
protected void btnlogout_Click(object sender, EventArgs e)
{
Session.Abandon();
Response.Redirect("login.aspx");
}
}
LOGIN.ASPX.CS
using System;
using System.Collections.Generic;
using System.Configuration;
using System.Data.SqlClient;
using System.Linq;
using System.Web;
using System.Web.UI;
using System.Web.UI.WebControls;
public partial class login : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{
}
protected void btnLogin_Click(object sender, EventArgs e)
{
//Verbindung zur DB herstellen
SqlConnection conDBTest = new SqlConnection(ConfigurationManager.ConnectionStrings["conTest"].ConnectionString);
//SqlCommand vorbereiten, Verbindung zur Tabelle
SqlCommand comDemoSelect = new SqlCommand();
comDemoSelect.Connection = conDBTest;
//comDemoSelect.CommandType = comm
comDemoSelect.CommandText = "SELECT ID_user, Benutzername, Password FROM tabUser where Benutzername = @Benutzername AND Password = @Password";
comDemoSelect.Parameters.AddWithValue("@Benutzername", this.txtBen.Text);
comDemoSelect.Parameters.AddWithValue("@Password", this.txtPW.Text);
comDemoSelect.Connection.Open();
//Datareader um Daten anzuzeigen
SqlDataReader drTodo = comDemoSelect.ExecuteReader();
//Datenausgabe in Labelfeld mit Datareader
if (drTodo.HasRows == true) //Sind Datensätze vorhanden?
{
Session["Loggin"] = "true";
Response.Redirect("admin.aspx");
}
else
{
txtPW.Text = "";
txtBen.Text = "";
txtBen.Focus();
}
}
}