Jun
28
Written by:
Michael Washington
6/28/2019 1:39 PM
The primary benefit we have when using server-side Blazor is that we do not have to make web http calls from the client code to the server code. This reduces the code we need to write and eliminates many security concerns.
In this article, we will demonstrate how a list of Weather forecasts can be added to the database by each user. A user will only have the ability to see their own forecasts.
Use SQL Server
The new project template in Visual Studio will allow you to create a database using SQL Server Express LocalDB. However, it can be problematic to install and configure. Using the free SQL Server 2017 Developer server (or the full SQL Server) is recommended.
Download and install SQL Server 2017 Developer Edition from the following link:
https://www.microsoft.com/en-us/sql-server/sql-server-downloads
Create The Blazor Application
Open Visual Studio.
Select Create a new Project.
Select ASP.NET Core Web Application.
Give it a name and click Create.
Select Blazor Server App.
Click the Change link under Authentication.
Select Individual User Accounts and Store user accounts in-app.
Click Create.
The project will be created.
Create The Database
Open the SQL Server Object Explorer.
Expand the tree under the SQL server, right-click on the Databases folder and select Add New Database.
Give the database a name and press Enter.
The database will be created.
Click on the Database node.
Open the Properties window if it is not already opened.
The properties for the database will display.
Copy the Connection string for the database.
Open the appsettings.json file.
Paste in the connection string for the DefaultConnection and save the file.
Hit F5 to run the application.
The application will open in your web browser.
Click the Register link.
Enter the information to create a new account.
Click the Register button.
Because this is the first time the database is being used, you will see a message asking you to run the migration scripts that will create the database objects needed to support the user membership code.
Click the Apply Migrations button.
After the message changes to Migrations Applied, refresh the page in the web browser.
You will now be logged into the application.
You can click around the application and see that it works.
The Fetch data page currently shows random data. We will alter the application to allow us to add, update, and delete this data in the database.
Close the web browser to stop the application.
Create The Database
When we return to Visual Studio, and the SQL Server Object Explorer window, we see the tables that the migration scripts added.
Right-click on the Tables node and select Add New Table.
Paste the following script in the T-SQL window and then click the Update button:
CREATE TABLE [dbo].[WeatherForecast] (
[Id] INT IDENTITY (1, 1) NOT NULL,
[Date] DATETIME NULL,
[TemperatureC] INT NULL,
[TemperatureF] INT NULL,
[Summary] NVARCHAR (50) NULL,
[UserName] NVARCHAR (50) NULL,
PRIMARY KEY CLUSTERED ([Id] ASC)
);
The script will prepare.
Click the Update Database button.
Back in the Server Explorer window, right-click on Tables and select Refresh.
The WeatherForecast table will display.
Right-click on the table and select Show Table Data.
We will enter some sample data so that we will be able to test the data connection in the next steps.
Set the UserName field to the username of the user that we registered an account for earlier.
Create The Data Context
If you do not already have it installed, install EF Core Power Tools from:
https://marketplace.visualstudio.com/items?itemName=ErikEJ.EFCorePowerTools
(Note: Before installing, close Visual Studio)
(Note: Please give this project a 5 star review on marketplace.visualstudio.com!)
Right-click on the project node in the Solution Explorer and select EF Core Power Tools then Reverse Engineer.
Click the Add button.
Connect to the database.
Select the database connection in the dropdown and click OK.
Select the WeatherForecast table and click OK.
Set the values and click OK.
In the Solution Explorer, you will see the Data Context has been created.
Click the OK button to close the popup.
Change the protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder) method to:
protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder)
{
if (!optionsBuilder.IsConfigured)
{
IConfigurationRoot configuration = new ConfigurationBuilder()
.SetBasePath(Directory.GetCurrentDirectory())
.AddJsonFile("appsettings.json")
.Build();
var connectionString = configuration.GetConnectionString("DefaultConnection");
optionsBuilder.UseSqlServer(connectionString);
}
}
Select Build, then Rebuild Solution.
Read From The Database
Delete the Data/WeatherForecast.cs file in the project.
We will use the Data/EndToEnd/WeatherForcast.cs class file created by the EF Core Tools instead.
Open the WeatherForecastService.cs file.
Replace all the code with the following code:
using EndToEndDB.Data.EndToEnd;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
namespace EndToEnd.Data
{
public class WeatherForecastService
{
public Task<List<WeatherForecast>> GetForecastAsync(string strCurrentUser)
{
List<WeatherForecast> colWeatherForcasts = new List<WeatherForecast>();
// Get Weather Forecasts
using (var context = new EndtoEndContext())
{
colWeatherForcasts = (from weatherForecast in context.WeatherForecast
// only get entries for the current logged in user
where weatherForecast.UserName == strCurrentUser
select weatherForecast).ToList();
}
return Task.FromResult(colWeatherForcasts);
}
}
}
Finally, open the FetchData.razor file.
Replace all the code with the following code:
@page "/fetchdata"
@using EndToEnd.Data
@using EndToEndDB.Data.EndToEnd
@inject WeatherForecastService ForecastService
@inject AuthenticationStateProvider AuthenticationStateProvider
<h1>Weather forecast</h1>
<!-- AuthorizeView allows us to only show sections of the page -->
<!-- based on the security on the current user -->
<AuthorizeView>
<!-- Show this section if the user is logged in -->
<Authorized>
<h4>Hello, @context.User.Identity.Name!</h4>
@if (forecasts == null)
{
<!-- Show this if the current user has no data... yet... -->
<p><em>Loading...</em></p>
}
else
{
<!-- Show the forecasts for the current user -->
<table class="table">
<thead>
<tr>
<th>Date</th>
<th>Temp. (C)</th>
<th>Temp. (F)</th>
<th>Summary</th>
</tr>
</thead>
<tbody>
@foreach (var forecast in forecasts)
{
<tr>
<td>@forecast.Date.Value.ToShortDateString()</td>
<td>@forecast.TemperatureC</td>
<td>@forecast.TemperatureF</td>
<td>@forecast.Summary</td>
</tr>
}
</tbody>
</table>
}
</Authorized>
<!-- Show this section if the user is not logged in -->
<NotAuthorized>
<p>You're not signed in.</p>
</NotAuthorized>
</AuthorizeView>
@code {
// AuthenticationState is available as a CascadingParameter
[CascadingParameter]
private Task<AuthenticationState> authenticationStateTask { get; set; }
List<WeatherForecast> forecasts;
protected override async Task OnInitAsync()
{
// Get the current user
var user = (await authenticationStateTask).User;
// Get the forecasts for the current user
forecasts = await ForecastService.GetForecastAsync(user.Identity.Name);
}
}
This code simply calls the GetForecastAsync method we created in the previous step, passing the username of the currently logged in user.
In a normal web application we would have to make a http web call from this client code to the code that connects to the database.
With server-side Blazor we don’t have to do that, yet the call is still secure because the pages are rendered on the server.
Also, note that if we look in the App.razor file (this is the first code to run when the application is started and controls the entire application)…
… we see it wraps the entire application in the CascadingAuthenticationState component that allows any child page to determine what user is logged in.
Build and run the project.
If we are not logged in, and we go to the Fetch data page, we will see a message indicating we are not signed in.
Click the Login button.
Log in as the user we created data for earlier.
After you are logged in, switch to the Fetch data page and you will see the data for the user we entered earlier.
Inserting Data Into The Database
Open the WeatherForecastService.cs file and add the following method:
public Task<WeatherForecast>
CreateForecastAsync(WeatherForecast objWeatherForecast)
{
using (var context = new EndtoEndContext())
{
context.WeatherForecast.Add(objWeatherForecast);
context.SaveChanges();
}
return Task.FromResult(objWeatherForecast);
}
This line:
var context = new EndtoEndContext()
Connects to the database using the datacontext we created with the EF Core tools.
Open the FetchData.razor file.
Add the following HTML markup directly under the existing table element:
<p>
<!-- Add a new forecast -->
<button class="btn btn-primary"
@onclick="@AddNewForecast">
Add New Forecast
</button>
</p>
This adds a button to allow a new forecast to be added.
Add the following code below the previous code:
@if (ShowPopup)
{
<!-- This is the popup to create or edit a forecast -->
<div class="modal" tabindex="-1" style="display:block" role="dialog">
<div class="modal-dialog">
<div class="modal-content">
<div class="modal-header">
<h3 class="modal-title">Edit Forecast</h3>
<!-- Button to close the popup -->
<button type="button" class="close"
@onclick="@ClosePopup">
<span aria-hidden="true">X</span>
</button>
</div>
<!-- Edit form for the current forecast -->
<div class="modal-body">
<input class="form-control" type="text"
placeholder="Celsius forecast"
@bind="@objWeatherForecast.TemperatureC" />
<input class="form-control" type="text"
placeholder="Fahrenheit forecast"
@bind="@objWeatherForecast.TemperatureF" />
<input class="form-control" type="text"
placeholder="Summary"
@bind="@objWeatherForecast.Summary" />
<br />
<!-- Button to save the forecast -->
<button class="btn btn-primary"
@onclick="@SaveForecast">
Save
</button>
</div>
</div>
</div>
</div>
}
This adds a form (that will be displayed a popup because the class for the DIV is modal), that allows the user to enter (and later edit) data for a forecast.
We do not need JavaScript to make this popup show. We only need to wrap this code with:
@if (ShowPopup)
{
...
}
When the ShowPopup value is true the popup will show. When the value is false, the popup will disappear.
Add the following code to the @code section:
WeatherForecast objWeatherForecast = new WeatherForecast();
bool ShowPopup = false;
void ClosePopup()
{
// Close the Popup
ShowPopup = false;
}
void AddNewForecast()
{
// Make new forecast
objWeatherForecast = new WeatherForecast();
// Set Id to 0 so we know it is a new record
objWeatherForecast.Id = 0;
// Open the Popup
ShowPopup = true;
}
async Task SaveForecast()
{
// Close the Popup
ShowPopup = false;
// Get the current user
var user = (await authenticationStateTask).User;
// A new forecast will have the Id set to 0
if (objWeatherForecast.Id == 0)
{
// Create new forecast
WeatherForecast objNewWeatherForecast = new WeatherForecast();
objNewWeatherForecast.Date = System.DateTime.Now;
objNewWeatherForecast.Summary = objWeatherForecast.Summary;
objNewWeatherForecast.TemperatureC =
Convert.ToInt32(objWeatherForecast.TemperatureC);
objNewWeatherForecast.TemperatureF =
Convert.ToInt32(objWeatherForecast.TemperatureF);
objNewWeatherForecast.UserName = user.Identity.Name;
// Save the result
var result =
ForecastService.CreateForecastAsync(objNewWeatherForecast);
}
else
{
// This is an update
}
// Get the forecasts for the current user
forecasts =
await ForecastService.GetForecastAsync(user.Identity.Name);
}
When you run the project, you can click the Add New Forecast button to add an entry.
The form only requires a Fahrenheit, Celsius, and a summary, because the other values (date and username), will be set by the code.
After clicking the Save button, the entry is saved to the database and displayed.
Updating The Data
Open the WeatherForecastService.cs file and add the following method:
public Task<bool>
UpdateForecastAsync(WeatherForecast objWeatherForecast)
{
using (var context = new EndtoEndContext())
{
var ExistingWeatherForecast =
context.WeatherForecast
.Where(x => x.Id == objWeatherForecast.Id)
.FirstOrDefault();
if (ExistingWeatherForecast != null)
{
ExistingWeatherForecast.Date =
objWeatherForecast.Date;
ExistingWeatherForecast.Summary =
objWeatherForecast.Summary;
ExistingWeatherForecast.TemperatureC =
objWeatherForecast.TemperatureC;
ExistingWeatherForecast.TemperatureF =
objWeatherForecast.TemperatureF;
context.SaveChanges();
}
else
{
return Task.FromResult(false);
}
}
return Task.FromResult(true);
}
Open the FetchData.razor file.
Replace the existing table element with the following markup that adds an edit button in the last column (that calls the EditForecast method we will add in the next step):
<table class="table">
<thead>
<tr>
<th>Date</th>
<th>Temp. (C)</th>
<th>Temp. (F)</th>
<th>Summary</th>
<th></th>
</tr>
</thead>
<tbody>
@foreach (var forecast in forecasts)
{
<tr>
<td>@forecast.Date.Value.ToShortDateString()</td>
<td>@forecast.TemperatureC</td>
<td>@forecast.TemperatureF</td>
<td>@forecast.Summary</td>
<td>
<!-- Edit the current forecast -->
<button class="btn btn-primary"
@onclick="@(() => EditForecast(forecast))">
Edit
</button>
</td>
</tr>
}
</tbody>
</table>
Add the following code to the @code section:
void EditForecast(WeatherForecast weatherForecast)
{
// Set the selected forecast
// as the current forecast
objWeatherForecast = weatherForecast;
// Open the Popup
ShowPopup = true;
}
This sets the current record to the objWeatherForecast object that the popup is bound to, and opens the popup.
Finally, change the existing SaveForecast method to the following:
async Task SaveForecast()
{
// Close the Popup
ShowPopup = false;
// Get the current user
var user = (await authenticationStateTask).User;
// A new forecast will have the Id set to 0
if (objWeatherForecast.Id == 0)
{
// Create new forecast
WeatherForecast objNewWeatherForecast = new WeatherForecast();
objNewWeatherForecast.Date = System.DateTime.Now;
objNewWeatherForecast.Summary = objWeatherForecast.Summary;
objNewWeatherForecast.TemperatureC =
Convert.ToInt32(objWeatherForecast.TemperatureC);
objNewWeatherForecast.TemperatureF =
Convert.ToInt32(objWeatherForecast.TemperatureF);
objNewWeatherForecast.UserName = user.Identity.Name;
// Save the result
var result =
ForecastService.CreateForecastAsync(objNewWeatherForecast);
}
else
{
// This is an update
var result =
ForecastService.UpdateForecastAsync(objWeatherForecast);
}
// Get the forecasts for the current user
forecasts =
await ForecastService.GetForecastAsync(user.Identity.Name);
}
This simply adds one line:
var result =
ForecastService.UpdateForecastAsync(objWeatherForecast);
To the existing method to handle an update rather than an insert.
When we run the application, we now have an Edit button to edit the existing record.
The existing record will display in the popup, allowing us to edit the data and save it.
The updated record is then displayed in the table.
Deleting The Data
Open the WeatherForecastService.cs file and add the following method:
public Task<bool>
DeleteForecastAsync(WeatherForecast objWeatherForecast)
{
using (var context = new EndtoEndContext())
{
var ExistingWeatherForecast =
context.WeatherForecast
.Where(x => x.Id == objWeatherForecast.Id)
.FirstOrDefault();
if (ExistingWeatherForecast != null)
{
context.WeatherForecast.Remove(ExistingWeatherForecast);
context.SaveChanges();
}
else
{
return Task.FromResult(false);
}
}
return Task.FromResult(true);
}
Open the FetchData.razor file.
Add code markup for a Delete button under the code markup for the current Save button in the popup:
<!-- Only show delete button if not a new record -->
@if (objWeatherForecast.Id > 0)
{
<!-- Button to delete the forecast -->
<button class="btn btn-primary"
@onclick="@DeleteForecast">
Delete
</button>
}
Add the following code to the @code section:
async Task DeleteForecast()
{
// Close the Popup
ShowPopup = false;
// Get the current user
var user = (await authenticationStateTask).User;
// Delete the forecast
var result = ForecastService.DeleteForecastAsync(objWeatherForecast);
// Get the forecasts for the current user
forecasts =
await ForecastService.GetForecastAsync(user.Identity.Name);
}
When we run the code and click the Edit button…
… we now see a Delete button that will delete the record.
However, when we click the Add New Forecast button that opens the same popup…
The delete button does not display (because there is no record to delete at this point).
Links
Blazor.net
ASP.NET Core Blazor authentication and authorization
EF Core Power Tools
Download
The project is available at http://lightswitchhelpwebsite.com/Downloads.aspx
You must have Visual Studio 2019 Preview Edition (or higher) installed to run the code.
6 comment(s) so far...
Re: Creating A Step-By-Step End-To-End Database Server-Side Blazor Application
You demos are always so easy for me to follow and I love your enthusiasm for Blazor. I look forward to following your journy with this one Michael!
By Paul Pitchford on
7/1/2019 4:00 AM
|
Re: Creating A Step-By-Step End-To-End Database Server-Side Blazor Application
@Paul Pitchford - Thank You! Yeah I'm "all in" on this one :)
By Michael Washington on
7/1/2019 4:01 AM
|
Re: Creating A Step-By-Step End-To-End Database Server-Side Blazor Application
Great article! Question: What process do you take when you need to make changes to the database? Modifying existing tables, adding new ones, creating FK? Do you make the change to the db and then reverse engineer again or is there something else you recommend? Thanks
By Dave on
7/1/2019 9:47 AM
|
Re: Creating A Step-By-Step End-To-End Database Server-Side Blazor Application
@Dave - I manually update the database then the EF Core Tools allows you to simply re-run the process I outline and it will update the DataContext code. So yes, I: "change to the db and then reverse engineer again".
By Michael Washington on
7/1/2019 9:49 AM
|
Re: Creating A Step-By-Step End-To-End Database Server-Side Blazor Application
Great article!
Thank You!
You forget to declare "objWeatherForecast"
WeatherForecast objWeatherForecast;
By azoz on
7/2/2019 3:48 AM
|
Re: Creating A Step-By-Step End-To-End Database Server-Side Blazor Application
@azoz - Thank you for letting me know! I updated the article. I also provide the full code on the download page.
By Michael Washington on
7/2/2019 3:55 AM
|