try to analyze this code and modify
hope this can help you
public static User GetOneUserBy(string username, string password, string Tserial, DateTime tdate )
{
try
{
string strCommandText = "GetOneUser";
User dto;
using (SqlConnection cn = new SqlConnection(SQLHelper.GetConnectionString()))
{
SqlCommand cmd = new SqlCommand(strCommandText, cn);
cmd.CommandType = CommandType.StoredProcedure;
SqlParameter paramUsername = new SqlParameter("@Username", System.Data.SqlDbType.NVarChar, 50);
paramUsername.Value = username;
cmd.Parameters.Add(paramUsername);
SqlParameter paramPwd = new SqlParameter("@Password", System.Data.SqlDbType.NVarChar, 50);
paramPwd.Value = username;
cmd.Parameters.Add(paramPwd);
SqlParameter paramTerminalSerial = new SqlParameter("@TerminalSerial", System.Data.SqlDbType.NVarChar, 50);
paramPwd.Value = Tserial;
cmd.Parameters.Add(paramTerminalSerial);
SqlParameter paramTDate = new SqlParameter("@tDate", System.Data.SqlDbType.DateTime);
paramPwd.Value = tdate;
cmd.Parameters.Add(paramTDate);
SqlDataReader reader = null;
dto = new User();
cn.Open();
reader = cmd.ExecuteReader();
if (reader.HasRows)
{
while (reader.Read())
{
dto.Name = (reader.IsDBNull(reader.GetOrdinal("Name"))) ? null : (System.String)reader["Name"];
dto.Address = (reader.IsDBNull(reader.GetOrdinal("Address"))) ? null : (System.String)reader["Address"];
dto.PhoneNo = (reader.IsDBNull(reader.GetOrdinal("PhoneNo"))) ? null : (System.String)reader["PhoneNo"];
dto.UserName = (reader.IsDBNull(reader.GetOrdinal("UserName"))) ? null : (System.String)reader["UserName"];
dto.Password = (reader.IsDBNull(reader.GetOrdinal("Password"))) ? null : (System.String)reader["Password"];
dto.Email = (reader.IsDBNull(reader.GetOrdinal("Email"))) ? null : (System.String)reader["Email"];
}
}
}
return dto;
}
catch (Exception ex)
{
throw;
}
}
Thanks