Context Navigation

← Previous Revision
Latest Revision
Next Revision →
Normal
Revision Log

HomeController.cs@ 705d6f5

main

Last change on this file since 705d6f5 was 705d6f5, checked in by ardit <ardit@…>, 2 days ago
Commiting all files of project - 20250224
Property mode set to `100644`
File size: 42.3 KB

Rev	Line
[705d6f5]	1	using db_tsh.Models;
	2	using Microsoft.AspNetCore.Authorization;
	3	using Microsoft.AspNetCore.Http;
	4	using Microsoft.AspNetCore.Mvc;
	5	using Microsoft.AspNetCore.Mvc.Rendering;
	6	using Microsoft.Extensions.Configuration;
	7	using Microsoft.Extensions.Logging;
	8	using Npgsql;
	9	using OfficeOpenXml;
	10	using Renci.SshNet;
	11	using System;
	12	using System.Collections.Generic;
	13	using System.Data;
	14	using System.Data.SqlClient;
	15	using System.Diagnostics;
	16	using System.IO;
	17	using System.Linq;
	18	using System.Security.Claims;
	19	using System.Threading.Tasks;
	20
	21	namespace db_tsh.Controllers
	22	{
	23	//[Authorize]
	24	public class HomeController : Controller
	25	{
	26	private readonly IConfiguration _configuration;
	27
	28	public HomeController(IConfiguration configuration)
	29	{
	30	_configuration = configuration;
	31	ExcelPackage.LicenseContext = LicenseContext.NonCommercial;
	32	}
	33
	34	private async Task<NpgsqlConnection> OpenDatabaseConnectionAsync()
	35	{
	36	var dbPort = 9999;
	37	var dbUser = _configuration["ConnectionStrings:DefaultConnection"].Split(';')[2].Split('=')[1];
	38	var dbPassword = _configuration["ConnectionStrings:DefaultConnection"].Split(';')[3].Split('=')[1];
	39	var dbName = _configuration["ConnectionStrings:DefaultConnection"].Split(';')[4].Split('=')[1];
	40
	41	var connectionString = $"Host=localhost;Port={dbPort};Username={dbUser};Password={dbPassword};Database={dbName}";
	42
	43	var conn = new NpgsqlConnection(connectionString);
	44	await conn.OpenAsync();
	45	return conn;
	46	}
	47
	48
	49	public IActionResult GetLoggedInUserInfo()
	50	{
	51	if (User.Identity.IsAuthenticated)
	52	{
	53	// User is authenticated, you can retrieve information about the user
	54	string userName = User.Identity.Name;
	55	// You can also access other user properties like roles, claims, etc.
	56
	57	// Example: Display the logged-in user's name
	58	ViewData["UserName"] = userName;
	59
	60	return View();
	61	}
	62	else
	63	{
	64	// User is not authenticated, handle accordingly
	65	return RedirectToAction("Login", "Account");
	66	}
	67	}
	68
	69
	70	[HttpGet]
	71	[Authorize]
	72	public async Task<IActionResult> IndexAsync(int? page)
	73	{
	74	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	75
	76	string userwhere = "";
	77	if (User.Identity.IsAuthenticated)
	78	{
	79	// Retrieve the user email
	80	string userEmail = User.Identity.Name;
	81	userwhere = string.Format("WHERE c.email=''{0}''", userEmail);
	82
	83	// Special case for the admin user
	84	if (userEmail == "a@trustshield.com")
	85	userwhere = ""; // No filtering for admin
	86	}
	87
	88	if (User.Identity.Name == "a@trustshield.com")
	89	ViewBag.isadmin = "Yes";
	90
	91	using (var con = await OpenDatabaseConnectionAsync())
	92	{
	93	// Prepare the SQL query to call the GetPolicyData function
	94	string query = string.Format("SELECT * FROM project.GetPolicyData('{0}')", userwhere);
	95
	96	// Create a command object
	97	NpgsqlCommand com = new NpgsqlCommand(query, con);
	98
	99	// Add the userwhere parameter to the command
	100	com.Parameters.AddWithValue("@UserWhere", userwhere);
	101
	102	// Execute the command and fill the results into a DataSet
	103	NpgsqlDataAdapter sqlda = new NpgsqlDataAdapter(com);
	104	DataSet ds = new DataSet();
	105	sqlda.Fill(ds);
	106
	107	List<Policy> policies = new List<Policy>();
	108
	109	if (ds.Tables[0].Rows.Count > 0)
	110	{
	111	foreach (DataRow dr in ds.Tables[0].Rows)
	112	{
	113	policies.Add(new Policy
	114	{
	115	P_id = Convert.ToInt32(dr["p_id"]),
	116	PolicyType = Convert.ToString(dr["PolicyType"]),
	117	CustomerName = Convert.ToString(dr["CustomerName"]),
	118	Sdate = Convert.ToDateTime(dr["StartDate"]),
	119	Edate = Convert.ToDateTime(dr["EndDate"]),
	120	Package = Convert.ToInt32(dr["PackageCode"]),
	121	PackageTitle = Convert.ToString(dr["PackageTitle"]),
	122	PackageTotal = Convert.ToDecimal(dr["PackageTotal"])
	123	});
	124	}
	125	}
	126	else
	127	{
	128	ViewBag.Error = "Nuk ka te dhena ne baze!"; // No data found
	129	}
	130
	131	int pageNumber = page ?? 1; // Default page number is 1
	132	int pageSize = 5; // Number of items to display per page
	133
	134	// Apply paging
	135	List<Policy> pagedPolicies = policies.Skip((pageNumber - 1) * pageSize).Take(pageSize).ToList();
	136
	137	ViewBag.TotalPages = (int)Math.Ceiling(policies.Count / (double)pageSize);
	138	ViewBag.CurrentPage = pageNumber;
	139
	140	ModelState.Clear();
	141
	142	return View(pagedPolicies);
	143	//return View();
	144	}
	145
	146
	147	}
	148
	149	public async Task<IActionResult> PrivacyAsync()
	150	{
	151	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	152	NpgsqlConnection sqlcon = await OpenDatabaseConnectionAsync();
	153	//sqlcon.Open();
	154	string query = "";
	155
	156	// Check if the user is "a@trustshield.com"
	157	if (User.Identity.Name == "a@trustshield.com")
	158	{
	159	// If the user is "a@trustshield.com", select all employees
	160	query = "SELECT email, name FROM project.Customer";
	161	}
	162	else
	163	{
	164	// If the user is not "a@trustshield.com", select only the current user
	165	query = string.Format("SELECT email, name FROM project.Customer WHERE email='{0}'", User.Identity.Name);
	166	}
	167
	168	using (NpgsqlCommand command = new NpgsqlCommand(query, sqlcon))
	169	{
	170	// Execute the command and retrieve the data
	171	using (NpgsqlDataReader reader = command.ExecuteReader())
	172	{
	173	// Create a list to store the data
	174	List<Customer> items = new List<Customer>();
	175
	176	if (User.Identity.Name == "a@trustshield.com")
	177	{
	178	// If the user is "a@trustshield.com", add a row for "ALL"
	179	string email = ""; // Define the customer ID for "ALL"
	180	Customer allCustomer = new Customer
	181	{
	182	Email = email,
	183	Name = "ALL"
	184	};
	185
	186	items.Add(allCustomer);
	187	}
	188
	189	// Read the data and add it to the list
	190	while (reader.Read())
	191	{
	192	string email = (string)reader["email"];
	193	string val = (string)reader["name"];
	194	items.Add(new Customer { Email = email, Name = val });
	195	}
	196
	197	// Pass the list to the view
	198	ViewBag.Items = items;
	199	}
	200	}
	201	return View();
	202	}
	203
	204
	205	[HttpPost]
	206	public async Task<ActionResult> PrivacyAsync(string datef, string datem, string dropdown)
	207	{
	208	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	209	NpgsqlConnection sqlcon = await OpenDatabaseConnectionAsync();
	210	//sqlcon.Open();
	211	string dropdown_params = string.Empty;
	212	if (dropdown != null)
	213	dropdown_params = string.Format(" and c.email = '{0}'", dropdown);
	214
	215	string query = string.Format(@"SELECT p.p_id,
	216	CASE
	217	WHEN v.pol_id IS NOT NULL THEN 'Auto Policy'
	218	WHEN t.pol_id IS NOT NULL THEN 'Travel Health'
	219	ELSE 'Property Policy'
	220	END AS PolicyType,
	221	c.name AS CustomerName,
	222	p.sdate AS StartDate,
	223	p.edate AS EndDate,
	224	p.package AS PackageCode,
	225	pkg.title AS PackageTitle,
	226	pkg.total AS PackageTotal
	227	FROM project.policy p
	228	LEFT JOIN project.Auto_pol v ON p.p_id = v.pol_id
	229	LEFT JOIN project.Travel_pol t ON p.p_id = t.pol_id
	230	LEFT JOIN project.property_pol pp ON p.p_id = pp.pr_id
	231	left join project.pol_dog pd on p.p_id =pd.policy
	232	LEFT JOIN project.customer c ON pd.c_id = c.c_id--OR t.o_embg = c.c_id
	233	LEFT JOIN project.package pkg ON p.package = pkg.code
	234	where p.sdate between '{0}' and '{1}' {2}", datef, datem, dropdown_params);
	235
	236	DataTable dataTable = await GetDataFromSqlServerAsync(connectionString, query);
	237
	238	if (dataTable.Rows.Count == 0)
	239	{
	240	TempData["Nodata"] = "Nuk ka te dhena per kete periudhe!!";
	241	return RedirectToAction("Privacy");
	242	}
	243
	244	string fileName = "template.xlsx";
	245	return GenerateExcelFile(fileName, dataTable);
	246	}
	247	public async Task<DataTable> GetDataFromSqlServerAsync(string connectionString, string query)
	248	{
	249	DataTable dataTable = new DataTable();
	250
	251	using (NpgsqlConnection connection = await OpenDatabaseConnectionAsync())
	252	{
	253	NpgsqlCommand command = new NpgsqlCommand(query, connection);
	254	NpgsqlDataAdapter adapter = new NpgsqlDataAdapter(command);
	255
	256	adapter.Fill(dataTable);
	257	connection.Close();
	258	}
	259
	260	return dataTable;
	261	}
	262
	263	public FileResult GenerateExcelFile(string fileName, DataTable dataTable)
	264	{
	265	using (ExcelPackage excelPackage = new ExcelPackage())
	266	{
	267	ExcelWorksheet worksheet = excelPackage.Workbook.Worksheets.Add("Sheet1");
	268
	269	// Add column headers
	270	int colIndex = 1;
	271	foreach (DataColumn column in dataTable.Columns)
	272	{
	273	worksheet.Cells[1, colIndex].Value = column.ColumnName;
	274	colIndex++;
	275	}
	276
	277	// Add data rows
	278	int rowIndex = 2;
	279	foreach (DataRow row in dataTable.Rows)
	280	{
	281	colIndex = 1;
	282	foreach (DataColumn column in dataTable.Columns)
	283	{
	284	object value = row[column];
	285
	286	// Format date values explicitly
	287	if (column.DataType == typeof(DateTime))
	288	{
	289	DateTime dateValue = (DateTime)value;
	290	worksheet.Cells[rowIndex, colIndex].Value = dateValue.ToString("dd/MM/yyyy");
	291	}
	292	else
	293	{
	294	worksheet.Cells[rowIndex, colIndex].Value = value;
	295	}
	296
	297	colIndex++;
	298	}
	299	rowIndex++;
	300	}
	301
	302	// Write the file to the response stream
	303	MemoryStream memoryStream = new MemoryStream();
	304	excelPackage.SaveAs(memoryStream);
	305
	306	// Return the Excel file as a byte array
	307	byte[] fileBytes = memoryStream.ToArray();
	308
	309	// Set the response headers for file download
	310	//string fileName = "YourFileName.xlsx";
	311	string contentType = "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet";
	312	return File(fileBytes, contentType, fileName);
	313	}
	314	}
	315
	316	public IActionResult Auto()//typepolicy = 3
	317	{
	318	return View();
	319	}
	320
	321	[HttpPost]
	322	public async Task<IActionResult> AutoAsync(Vehicle veh)
	323	{
	324	if (ModelState.IsValid)
	325	{
	326	NpgsqlTransaction transaction = null;
	327	try
	328	{
	329	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	330	using (NpgsqlConnection con = await OpenDatabaseConnectionAsync())
	331	{
	332	transaction = (NpgsqlTransaction)await con.BeginTransactionAsync();
	333	DateTime startDate = DateTime.Parse(Request.Form["startDate"]);
	334	DateTime enddate = startDate.AddYears(1);
	335
	336	// Insert data into Policy table and get p_id (use RETURNING to get the inserted ID in PostgreSQL)
	337	string insertPolicyQuery = "INSERT INTO project.Policy (sdate, edate, package) " +
	338	"VALUES (@Sdate, @Edate, 4) " +
	339	"RETURNING p_id";
	340	using (NpgsqlCommand insertPolicyCmd = new NpgsqlCommand(insertPolicyQuery, con))
	341	{
	342	insertPolicyCmd.Parameters.AddWithValue("@Sdate", startDate);
	343	insertPolicyCmd.Parameters.AddWithValue("@Edate", enddate);
	344	int p_id = (int)insertPolicyCmd.ExecuteScalar();
	345
	346	// Insert data into Auto_pol table and get a_id (again using RETURNING)
	347	string insertPolAutoQuery = "INSERT INTO project.Auto_pol (pol_id) " +
	348	"VALUES (@Pol_Id) " +
	349	"RETURNING a_id";
	350	using (NpgsqlCommand insertPolAutoCmd = new NpgsqlCommand(insertPolAutoQuery, con))
	351	{
	352	insertPolAutoCmd.Parameters.AddWithValue("@Pol_Id", p_id);
	353	int a_id = (int)insertPolAutoCmd.ExecuteScalar();
	354
	355	// Insert data into Vehicle table
	356	string insertVehicleQuery = "INSERT INTO project.Vehicle (policy, type, marka, model, license_plate) " +
	357	"VALUES (@Policy, @Type, @Marka, @Model, @LicensePlate)";
	358	using (NpgsqlCommand insertVehicleCmd = new NpgsqlCommand(insertVehicleQuery, con))
	359	{
	360	insertVehicleCmd.Parameters.AddWithValue("@Policy", a_id);
	361	insertVehicleCmd.Parameters.AddWithValue("@Type", veh.Type);
	362	insertVehicleCmd.Parameters.AddWithValue("@Marka", veh.Marka);
	363	insertVehicleCmd.Parameters.AddWithValue("@Model", veh.Model);
	364	insertVehicleCmd.Parameters.AddWithValue("@LicensePlate", veh.License_Plate);
	365	insertVehicleCmd.ExecuteNonQuery();
	366	}
	367
	368	// Insert data into pol_dog table
	369	string insertDogQuery = @"INSERT INTO project.pol_dog (d_embg, c_id, name, policy, birthdate)
	370	SELECT @a_id, c_id, name, @Policy, CURRENT_DATE
	371	FROM project.Customer WHERE email = @Email";
	372	using (NpgsqlCommand insertDogCmd = new NpgsqlCommand(insertDogQuery, con))
	373	{
	374	insertDogCmd.Parameters.AddWithValue("@Policy", p_id);
	375	insertDogCmd.Parameters.AddWithValue("@Email", User.Identity.Name);
	376	insertDogCmd.Parameters.AddWithValue("@a_id", p_id); // a_id + 1 as per your logic
	377	insertDogCmd.ExecuteNonQuery();
	378	}
	379	await transaction.CommitAsync();
	380	return RedirectToAction("Payment", new { policyId = p_id, package = 4 });
	381	}
	382	}
	383	}
	384	}
	385	catch (Exception ex)
	386	{
	387	if (transaction != null)
	388	{
	389	await transaction.RollbackAsync();
	390	}
	391	ModelState.AddModelError(string.Empty, "An error occurred while creating the auto policy.");
	392	// Log the exception if needed
	393	}
	394	}
	395	return View();
	396	}
	397
	398
	399	[HttpGet]
	400	public async Task<IActionResult> TravelAsync()
	401	{
	402	List<Package> packages = new List<Package>();
	403	using (NpgsqlConnection con = await OpenDatabaseConnectionAsync()) // Replace NpgsqlConnection with your database connection type
	404	{
	405	string query = "SELECT code, title FROM project.Package WHERE type_pol = 1";
	406	using (NpgsqlCommand cmd = new NpgsqlCommand(query, con))
	407	{
	408	using (NpgsqlDataReader reader = cmd.ExecuteReader())
	409	{
	410	while (reader.Read())
	411	{
	412	int code = reader.GetInt32(0);
	413	string title = reader.GetString(1);
	414	packages.Add(new Package { Code = code, Title = title }); // Replace Package with your actual model class
	415	}
	416	}
	417	}
	418	}
	419
	420	// Store packages data in ViewBag
	421	ViewBag.Packages = packages;
	422
	423	// Return the view
	424	return View();
	425	}
	426
	427
	428	[HttpPost]
	429	public async Task<IActionResult> TravelAsync(Osi polOsi)
	430	{
	431	if (ModelState.IsValid)
	432	{
	433	try
	434	{
	435	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	436	using (NpgsqlConnection con = await OpenDatabaseConnectionAsync())
	437	{
	438	int packageId = int.Parse(Request.Form["package"]);
	439
	440	// Calculate end date based on the selected start date and number of days
	441	DateTime startDate = DateTime.Parse(Request.Form["startDate"]);
	442	int numberOfDays = int.Parse(Request.Form["numberOfDays"]);
	443	DateTime endDate = startDate.AddDays(numberOfDays);
	444
	445	// Insert data into Policy table with automatic ID generation and returning the p_id
	446	string insertPolicyQuery = "INSERT INTO project.Policy (sdate, edate, package) " +
	447	"VALUES (@Sdate, @Edate, @Package) " +
	448	"RETURNING p_id";
	449	using (NpgsqlCommand insertPolicyCmd = new NpgsqlCommand(insertPolicyQuery, con))
	450	{
	451	insertPolicyCmd.Parameters.AddWithValue("@Sdate", startDate);
	452	insertPolicyCmd.Parameters.AddWithValue("@Edate", endDate);
	453	insertPolicyCmd.Parameters.AddWithValue("@Package", packageId);
	454	int p_id = (int)insertPolicyCmd.ExecuteScalar();
	455
	456	// Insert data into PolTravel table and return tr_id
	457	string insertPolTravelQuery = "INSERT INTO project.Travel_pol (pol_id) " +
	458	"VALUES (@Pol_Id) " +
	459	"RETURNING tr_id";
	460	using (NpgsqlCommand insertPolTravelCmd = new NpgsqlCommand(insertPolTravelQuery, con))
	461	{
	462	insertPolTravelCmd.Parameters.AddWithValue("@Pol_Id", p_id);
	463	int tr_id = (int)insertPolTravelCmd.ExecuteScalar();
	464
	465	// Insert data into PolOsi table
	466	string insertPolOsiQuery = "INSERT INTO project.Pol_osi (o_embg, policy, name, surname, birthdate, kontakt) " +
	467	"VALUES (@O_Embg, @Policy, @Name, @Surname, @Birthdate, @Kontakt)";
	468	using (NpgsqlCommand insertPolOsiCmd = new NpgsqlCommand(insertPolOsiQuery, con))
	469	{
	470	insertPolOsiCmd.Parameters.AddWithValue("@O_Embg", polOsi.OEmbg);
	471	insertPolOsiCmd.Parameters.AddWithValue("@Policy", tr_id);
	472	insertPolOsiCmd.Parameters.AddWithValue("@Name", polOsi.Name);
	473	insertPolOsiCmd.Parameters.AddWithValue("@Surname", polOsi.Surname);
	474	insertPolOsiCmd.Parameters.AddWithValue("@Birthdate", polOsi.Birthdate);
	475	insertPolOsiCmd.Parameters.AddWithValue("@Kontakt", polOsi.Kontakt);
	476	insertPolOsiCmd.ExecuteNonQuery();
	477	}
	478
	479	// Insert data into pol_dog table
	480	string insertDogQuery = @"INSERT INTO project.pol_dog (d_embg, c_id, name, policy, birthdate)
	481	SELECT @tr_id, c_id, name, @Policy, CURRENT_DATE
	482	FROM project.Customer
	483	WHERE email = @email";
	484	using (NpgsqlCommand insertDogCmd = new NpgsqlCommand(insertDogQuery, con))
	485	{
	486	insertDogCmd.Parameters.AddWithValue("@Policy", p_id);
	487	insertDogCmd.Parameters.AddWithValue("@email", User.Identity.Name);
	488	insertDogCmd.Parameters.AddWithValue("@tr_id", p_id); // tr_id + 3 as per your logic
	489	insertDogCmd.ExecuteNonQuery();
	490	}
	491
	492	// Redirect to Payment action with policyId and packageId
	493	return RedirectToAction("Payment", new { policyId = p_id, package = packageId });
	494	}
	495	}
	496	}
	497	}
	498	catch (Exception ex)
	499	{
	500	ModelState.AddModelError(string.Empty, "An error occurred while creating the travel policy.");
	501	// Log the exception if needed
	502	}
	503	}
	504
	505	return View(polOsi);
	506	}
	507
	508	[HttpGet]
	509	public async Task<IActionResult> Property()
	510	{
	511	List<Package> packages = new List<Package>();
	512	using (NpgsqlConnection con = await OpenDatabaseConnectionAsync())
	513	{
	514	string query = "SELECT code, title FROM project.Package WHERE type_pol = 2";
	515	using (NpgsqlCommand cmd = new NpgsqlCommand(query, con))
	516	{
	517	using (NpgsqlDataReader reader = cmd.ExecuteReader())
	518	{
	519	while (reader.Read())
	520	{
	521	int code = reader.GetInt32(0);
	522	string title = reader.GetString(1);
	523	packages.Add(new Package { Code = code, Title = title });
	524	}
	525	}
	526	}
	527	}
	528	ViewBag.Packages = packages;
	529	return View();
	530	}
	531
	532
	533	[HttpPost]
	534	public async Task<IActionResult> Property(Property property)
	535	{
	536	try
	537	{
	538	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	539	int packageId = int.Parse(Request.Form["package"]);
	540
	541	using (NpgsqlConnection con = await OpenDatabaseConnectionAsync())
	542	{
	543	DateTime startDate = DateTime.Parse(Request.Form["startDate"]);
	544	int numberOfDays = int.Parse(Request.Form["numberOfDays"]);
	545	DateTime endDate = startDate.AddDays(numberOfDays);
	546
	547	string insertPolicyQuery = "INSERT INTO project.Policy (sdate, edate, package) " +
	548	"VALUES (@Sdate, @Edate, @Package) " +
	549	"RETURNING p_id";
	550	int p_id;
	551	using (NpgsqlCommand insertPolicyCmd = new NpgsqlCommand(insertPolicyQuery, con))
	552	{
	553	insertPolicyCmd.Parameters.AddWithValue("@Sdate", startDate);
	554	insertPolicyCmd.Parameters.AddWithValue("@Edate", endDate);
	555	insertPolicyCmd.Parameters.AddWithValue("@Package", packageId);
	556	p_id = (int)insertPolicyCmd.ExecuteScalar(); // Get the policy ID (p_id)
	557	}
	558
	559	int pr_id = 0;
	560	string policyQuery = "INSERT INTO project.Property_pol (pol_id) " +
	561	"VALUES (@pol_id) " +
	562	"RETURNING pr_id";
	563	using (NpgsqlCommand cmd = new NpgsqlCommand(policyQuery, con))
	564	{
	565	cmd.Parameters.AddWithValue("@pol_id", p_id); // Use p_id from Policy table
	566	pr_id = (int)cmd.ExecuteScalar(); // Get the generated pr_id for Property_pol
	567	}
	568
	569	string query = "INSERT INTO project.Property (policy, address, floor, year_build, security) " +
	570	"VALUES (@policy, @address, @floor, @year_build, @security)";
	571
	572	using (NpgsqlCommand cmd = new NpgsqlCommand(query, con))
	573	{
	574	cmd.Parameters.AddWithValue("@policy", pr_id); // Use pr_id from Property_pol
	575	cmd.Parameters.AddWithValue("@address", property.Address);
	576	cmd.Parameters.AddWithValue("@floor", property.Floor);
	577	cmd.Parameters.AddWithValue("@year_build", property.YearBuild);
	578	cmd.Parameters.AddWithValue("@security", true);
	579
	580	cmd.ExecuteNonQuery(); // Insert into Property table
	581	}
	582
	583	string insertdog = @"INSERT INTO project.pol_dog (d_embg, c_id, name, policy, birthdate)
	584	SELECT @a_id, c_id, name, @Policy, CURRENT_DATE
	585	FROM project.Customer WHERE email=@email";
	586	using (NpgsqlCommand insertDogCmd = new NpgsqlCommand(insertdog, con))
	587	{
	588	insertDogCmd.Parameters.AddWithValue("@Policy", p_id);
	589	insertDogCmd.Parameters.AddWithValue("@email", User.Identity.Name);
	590	insertDogCmd.Parameters.AddWithValue("@a_id", p_id); // pr_id + 1 as per your logic
	591	insertDogCmd.ExecuteNonQuery();
	592	}
	593
	594	return RedirectToAction("Payment", new { policyId = p_id, package = packageId });
	595	}
	596	}
	597	catch (Exception ex)
	598	{
	599	ViewData["ErrorMessage"] = $"Error: {ex.Message}";
	600	return View(property);
	601	}
	602	}
	603
	604
	605
	606
	607
	608	[HttpGet]
	609	public async Task<IActionResult> Package()
	610	{
	611	try
	612	{
	613	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	614
	615	List<Package> packages = new List<Package>();
	616
	617	using (NpgsqlConnection con = await OpenDatabaseConnectionAsync())
	618	{
	619	string query = "SELECT * FROM project.package"; // Adjust query to fetch all packages
	620	using (NpgsqlCommand cmd = new NpgsqlCommand(query, con))
	621	{
	622	NpgsqlDataReader reader = await cmd.ExecuteReaderAsync();
	623	while (await reader.ReadAsync())
	624	{
	625	Package package = new Package
	626	{
	627	Code = (int)reader["Code"],
	628	Title = (string)reader["Title"],
	629	Total = reader["Total"] as decimal?,
	630	Valuet = (string)reader["Valuet"],
	631	TypePol = (int)reader["type_pol"] // Read the policy type
	632	};
	633	packages.Add(package);
	634	}
	635	}
	636	}
	637
	638	return View(packages);
	639	}
	640	catch (Exception ex)
	641	{
	642	ViewData["ErrorMessage"] = $"Error: {ex.Message}";
	643	return View();
	644	}
	645	}
	646
	647	// POST: Insert or Update package
	648	[HttpPost]
	649	public async Task<IActionResult> Package(Package package)
	650	{
	651	if (ModelState.IsValid)
	652	{
	653	try
	654	{
	655	using (NpgsqlConnection con = await OpenDatabaseConnectionAsync())
	656	{
	657	if (package.Code == 0) // New package (insert)
	658	{
	659	string insertQuery = "INSERT INTO project.package (Title, Total, Valuet, Type_Pol) " +
	660	"VALUES (@Title, @Total, @Valuet, @TypePol)";
	661
	662	using (NpgsqlCommand cmd = new NpgsqlCommand(insertQuery, con))
	663	{
	664	cmd.Parameters.AddWithValue("@Title", package.Title);
	665	cmd.Parameters.AddWithValue("@Total", package.Total);
	666	cmd.Parameters.AddWithValue("@Valuet", package.Valuet);
	667	cmd.Parameters.AddWithValue("@TypePol", package.TypePol);
	668
	669	await cmd.ExecuteNonQueryAsync();
	670	}
	671	}
	672	else
	673	{
	674	string updateQuery = "UPDATE project.package SET Title = @Title, Total = @Total, Valuet = @Valuet " +
	675	"WHERE Code = @Code";
	676
	677	string typepolquery = string.Format("select type_pol from project.Package where code={0}", package.Code);
	678	using (NpgsqlCommand cmd1 = new NpgsqlCommand(typepolquery, con))
	679	{
	680	int type = (int)cmd1.ExecuteScalar();
	681	package.TypePol = type;
	682	}
	683
	684	using (NpgsqlCommand cmd = new NpgsqlCommand(updateQuery, con))
	685	{
	686	cmd.Parameters.AddWithValue("@Title", package.Title);
	687	cmd.Parameters.AddWithValue("@Total", package.Total);
	688	cmd.Parameters.AddWithValue("@Valuet", package.Valuet);
	689	cmd.Parameters.AddWithValue("@TypePol", package.TypePol);
	690	cmd.Parameters.AddWithValue("@Code", package.Code);
	691
	692	await cmd.ExecuteNonQueryAsync();
	693	}
	694	}
	695	}
	696
	697	return RedirectToAction("Package"); // Redirect back to the package list after saving
	698	}
	699	catch (Exception ex)
	700	{
	701	ModelState.AddModelError(string.Empty, "An error occurred while saving the package.");
	702	}
	703	}
	704
	705	return View("Package", package); // Stay on the same view in case of errors
	706	}
	707
	708	[HttpGet]
	709	public async Task<IActionResult> Covers()
	710	{
	711	try
	712	{
	713	// Get the connection string
	714	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	715
	716	List<SelectListItem> packages = new List<SelectListItem>();
	717	List<Covers> covers = new List<Covers>();
	718
	719	using (NpgsqlConnection con = await OpenDatabaseConnectionAsync())
	720	{
	721	// Query to fetch packages
	722	string query = "SELECT code, title FROM project.Package";
	723	using (NpgsqlCommand cmd = new NpgsqlCommand(query, con))
	724	{
	725	NpgsqlDataReader reader = await cmd.ExecuteReaderAsync();
	726	while (await reader.ReadAsync())
	727	{
	728	packages.Add(new SelectListItem
	729	{
	730	Value = reader["code"].ToString(),
	731	Text = reader["title"].ToString()
	732	});
	733	}
	734	}
	735	}
	736
	737	using (NpgsqlConnection con = await OpenDatabaseConnectionAsync())
	738	{
	739	// Query to fetch packages
	740	string query = "SELECT (select title from project.Package where code=CAST(pc.package AS INTEGER)) as package_name,pc.* FROM project.covers pc";
	741	using (NpgsqlCommand cmd = new NpgsqlCommand(query, con))
	742	{
	743	NpgsqlDataReader reader = await cmd.ExecuteReaderAsync();
	744	while (await reader.ReadAsync())
	745	{
	746	Covers cover = new Covers
	747	{
	748	cov_id = (int)reader["cov_id"],
	749	cov_amount = (string)reader["cov_amount"],
	750	cov_type = (string)reader["cov_type"],
	751	PackageName = (string)reader["package_name"]
	752	};
	753	covers.Add(cover);
	754	}
	755	}
	756	}
	757
	758	// Pass the packages to the view for the dropdown
	759	ViewData["Packages"] = packages;
	760
	761	return View(covers);
	762	}
	763	catch (Exception ex)
	764	{
	765	ViewData["ErrorMessage"] = $"Error: {ex.Message}";
	766	return View();
	767	}
	768	}
	769
	770	[HttpPost]
	771	public async Task<IActionResult> Covers(Covers cover)
	772	{
	773	try
	774	{
	775	// Get the connection string
	776	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	777
	778	using (NpgsqlConnection con = await OpenDatabaseConnectionAsync())
	779	{
	780
	781	string package = null;
	782	if (cover.cov_id > 0)
	783	{
	784	package = string.Format("select code from project.Package where title='{0}'", cover.package_code);
	785	NpgsqlCommand cmd1 = new NpgsqlCommand(package, con);
	786	object result = cmd1.ExecuteScalar();
	787	cover.package_code = result.ToString();
	788	}
	789
	790	// If the cover has a valid id, we're updating an existing cover, otherwise, it's a new cover (insert)
	791	string query;
	792
	793	if (cover.cov_id > 0) // Update existing cover
	794	{
	795	query = "UPDATE project.Covers SET cov_amount = @cov_amount, package = @package, cov_type = @cov_type WHERE cov_id = @cov_id";
	796	}
	797	else // Insert new cover
	798	{
	799	query = "INSERT INTO project.Covers (cov_amount, package, cov_type) VALUES (@cov_amount, @package, @cov_type)";
	800	}
	801
	802	using (NpgsqlCommand cmd = new NpgsqlCommand(query, con))
	803	{
	804	// Add parameters to prevent SQL injection
	805	cmd.Parameters.AddWithValue("@cov_amount", cover.cov_amount);
	806	cmd.Parameters.AddWithValue("@package", cover.package_code); // Use the selected package_code
	807	cmd.Parameters.AddWithValue("@cov_type", cover.cov_type);
	808
	809	// If updating, include the ID in the parameters
	810	if (cover.cov_id > 0)
	811	{
	812	cmd.Parameters.AddWithValue("@cov_id", cover.cov_id);
	813	}
	814
	815	// Execute the query
	816	int result = await cmd.ExecuteNonQueryAsync();
	817	if (result > 0)
	818	{
	819	return RedirectToAction("Covers"); // Redirect after success
	820	}
	821	else
	822	{
	823	ViewData["ErrorMessage"] = "An error occurred while creating/updating the cover.";
	824	return View(cover); // Return to the form with an error message
	825	}
	826	}
	827	}
	828	}
	829	catch (Exception ex)
	830	{
	831	ViewData["ErrorMessage"] = $"Error: {ex.Message}";
	832	return View(cover);
	833	}
	834	}
	835
	836
	837	[HttpGet]
	838	public async Task<IActionResult> PaymentAsync(int policyId, int package = 0)
	839	{
	840	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	841	int total = 0;
	842	if (package != 0)
	843	{
	844	// SQL query to get total amount for the specified package
	845	string query = "SELECT total FROM project.Package WHERE code = @package";
	846
	847	try
	848	{
	849	using (NpgsqlConnection conn = await OpenDatabaseConnectionAsync())
	850	{
	851
	852	// Create and configure the SQL command
	853	using (NpgsqlCommand cmd = new NpgsqlCommand(query, conn))
	854	{
	855	cmd.Parameters.AddWithValue("@package", package);
	856
	857	// Execute the query and retrieve the result as a single value (ExecuteScalar)
	858	object result = cmd.ExecuteScalar();
	859
	860	if (result != null)
	861	{
	862	total = Convert.ToInt32(result);
	863	}
	864	else
	865	{
	866	// Handle the case when no result is found, if necessary
	867	total = 0;
	868	}
	869	}
	870	}
	871	}
	872	catch (Exception ex)
	873	{
	874	// Handle exceptions (e.g., log them)
	875	// You can return an error page or return a view with an error message
	876	return View("Error", new { message = ex.Message });
	877	}
	878	}
	879	var model = new Payment
	880	{
	881	PolicyId = policyId,
	882	PAmount = total
	883	// You can populate the model with any additional data you need for the payment form
	884	};
	885
	886	return View(model);
	887	}
	888
	889	[HttpPost]
	890	public async Task<IActionResult> PaymentAsync(Payment model)
	891	{
	892	if (ModelState.IsValid)
	893	{
	894	try
	895	{
	896	// Connection string from appsettings.json
	897	string connectionString = _configuration.GetConnectionString("DefaultConnection");
	898
	899	// SQL query to insert payment data
	900	string query = "INSERT INTO project.Payment (policy, p_date, p_amount, visa_number) " +
	901	"VALUES (@PolicyId, @PaymentDate, @PaymentAmount, @VisaNumber);";
	902
	903	using (NpgsqlConnection conn = await OpenDatabaseConnectionAsync())
	904	{
	905	// Create and configure the SQL command
	906	using (NpgsqlCommand cmd = new NpgsqlCommand(query, conn))
	907	{
	908	cmd.Parameters.AddWithValue("@PolicyId", model.PolicyId);
	909	cmd.Parameters.AddWithValue("@PaymentDate", model.PDate);
	910	cmd.Parameters.AddWithValue("@PaymentAmount", model.PAmount);
	911	cmd.Parameters.AddWithValue("@VisaNumber", model.VisaNumber);
	912
	913	// Execute the query
	914	int rowsAffected = (int)cmd.ExecuteNonQuery();
	915
	916	if (rowsAffected > 0)
	917	{
	918	// If the payment was inserted successfully, redirect or return a success message
	919	return View("PaymentSuccess");
	920	}
	921	else
	922	{
	923	// Handle failure case
	924	ModelState.AddModelError("", "Error occurred while processing the payment.");
	925	}
	926	}
	927	}
	928	}
	929	catch (Exception ex)
	930	{
	931	// Log exception or handle accordingly
	932	ModelState.AddModelError("", $"An error occurred: {ex.Message}");
	933	}
	934	}
	935
	936	// Return the view with error if model validation fails or something went wrong
	937	return View(model);
	938	}
	939
	940	[ResponseCache(Duration = 0, Location = ResponseCacheLocation.None, NoStore = true)]
	941	public IActionResult Error()
	942	{
	943	return View(new ErrorViewModel { RequestId = Activity.Current?.Id ?? HttpContext.TraceIdentifier });
	944	}
	945	}
	946	}

Note: See TracBrowser for help on using the repository browser.

Context Navigation

source: db_tsh/Controllers/HomeController.cs@ 705d6f5

Download in other formats: