public string Login(string username, string password)
{
try
{
using (MySqlConnection conn = new MySqlConnection(ConnectionString))
{
if (conn.State != System.Data.ConnectionState.Open)
{
conn.Open();
}
MySqlCommand command = conn.CreateCommand();
command.CommandText = String.Format("Select * from admins where username='******'", username);
MySqlDataReader reader = command.ExecuteReader();
if (false == reader.Read())
{
return(sJavaSerializer.Serialize(new Response()
{
success = false
}));
}
// extend the validity by 1 hour
refreshToken((int)reader["id"]);
// get the new data
reader.Close();
reader = command.ExecuteReader();
if (reader.Read())
{
AdminsObject adminObj = new AdminsObject()
{
id = (int)reader["id"],
name = (string)reader["display_name"],
username = (string)reader["username"],
token = (string)reader["token"]
};
return(sJavaSerializer.Serialize(new Response()
{
success = true, payload = adminObj
}));
}
}
}
catch (Exception ex)
{
return(sJavaSerializer.Serialize(new Response()
{
success = false, message = ex.Message
}));
}
return(sJavaSerializer.Serialize(new Response()
{
success = false
}));
}
public string FirstTimeLogin(string username)
{
try
{
using (MySqlConnection conn = new MySqlConnection(ConnectionString))
{
if (conn.State != System.Data.ConnectionState.Open)
{
conn.Open();
}
MySqlCommand command = conn.CreateCommand();
command.CommandText = String.Format("Select * from admins where username='******'", username);
MySqlDataReader reader = command.ExecuteReader();
if (false == reader.Read())
{
return(sJavaSerializer.Serialize(new Response()
{
success = false
}));
}
if ((string)reader["password"] != string.Empty)
{
return(sJavaSerializer.Serialize(new Response()
{
success = false
}));
}
// generate new token
string newToken = Guid.NewGuid().ToString();
AdminsObject adminObj = new AdminsObject()
{
id = (int)reader["id"],
name = (string)reader["display_name"],
username = username,
token = newToken
};
// update the token with new validity
reader.Close();
command.CommandText = String.Format("Update admins set token='{1}', validity='{2}' where username='******'",
username, newToken, DateTime.UtcNow.ToString("yyyy-MM-dd HH:mm:ss"));
command.ExecuteNonQuery();
return(sJavaSerializer.Serialize(new Response()
{
success = true, payload = adminObj
}));
}
}
catch (Exception ex)
{
return(sJavaSerializer.Serialize(new Response()
{
success = false, message = ex.Message
}));
}
}
