/// <summary>
/// Check blank password and password is matching with given password.
/// </summary>
/// <param name="username"></param>
/// <param name="password"></param>
/// <returns></returns>
public ErrorItem CheckPassword(NZString username, NZString password)
{
if (password.IsNull)
{
ErrorItem item = new ErrorItem(password.Owner, Messages.eValidate.VLM9004.ToString());
return(item);
}
// ถ้าต้องการเช็คการเข้ารหัส ให้ปรับเป็น true.
bool bUseHashPassword = true;
//== Check password same with stored on database.
UserBIZ userBiz = new UserBIZ();
string hashPassword = string.Empty;
if (bUseHashPassword)
{
hashPassword = userBiz.HashUserPassword(username.StrongValue, password.StrongValue, true);
}
else
{
hashPassword = password.StrongValue;
}
UserDTO userDTO = userBiz.LoadUser(username);
if (hashPassword != userDTO.PASS.StrongValue)
{
ErrorItem item = new ErrorItem(password.Owner, Messages.eValidate.VLM9007.ToString());
return(item);
}
return(null);
}
public bool UpdateUserController(CreateUserDomain userDm)
{
UserBIZ userBIZ = new UserBIZ();
UserDTO userDTO = new UserDTO();
userDTO.APPLY_DATE.Value = DateTime.Now;
userDTO.CRT_BY = CommonLib.Common.CurrentUserInfomation.Username;
userDTO.CRT_DATE.Value = DateTime.Now;
userDTO.CRT_MACHINE = CommonLib.Common.CurrentUserInfomation.UserCD;
userDTO.DATE_FORMAT = userDm.DefaultDateFormat;
userDTO.FLG_ACTIVE = userDm.IsActive;
userDTO.FLG_RESIGN = userDm.IsResign;
userDTO.GROUP_CD = userDm.GroupUser;
userDTO.LANG_CD = userDm.DefaultLang;
userDTO.LOWER_USER_ACCOUNT = userDm.UserAccount.ToLower();
userDTO.MENU_SET_CD = userDm.MenuSet;
if (!userDm.PassWord.IsNull)
{
userDTO.PASS.Value = userBIZ.HashUserPassword(userDm.UserAccount.StrongValue, userDm.PassWord.StrongValue, true);//userDm.PassWord;
userDTO.PASS.Owner = userDm.PassWord.Owner;
}
userDTO.UPPER_USER_ACCOUNT = userDm.UserAccount.ToUpper();
userDTO.UPD_BY = CommonLib.Common.CurrentUserInfomation.Username;
userDTO.UPD_DATE.Value = DateTime.Now;
userDTO.UPD_MACHINE = CommonLib.Common.CurrentUserInfomation.UserCD;
userDTO.USER_ACCOUNT = userDm.UserAccount;
userDTO.FULL_NAME = userDm.UserName;
userBIZ.UpdateUser(userDTO);
return(true);
}
/// <summary>
///
/// </summary>
/// <param name="userCD"></param>
/// <param name="oldPassword"></param>
/// <param name="newPassword"></param>
/// <param name="confirmNewPassword"></param>
/// <returns></returns>
/// <exception cref="BusinessException"><c>BusinessException</c>.</exception>
public void BizCheckChangePassword(NZString userCD, NZString oldPassword, NZString newPassword, NZString confirmNewPassword)
{
// UserDAO dao = new UserDAO(CommonLib.Common.CurrentDatabase);
UserBIZ biz = new UserBIZ();
// check old password.
if (!newPassword.IsNull && !confirmNewPassword.IsNull)
{
UserDTO dtoUser = biz.LoadUser(userCD);
string encPassword = biz.HashUserPassword(userCD.StrongValue, oldPassword.StrongValue, true);
if (!Equals(encPassword, dtoUser.PASS.StrongValue))
{
ErrorItem error = new ErrorItem(confirmNewPassword.Owner, Messages.eValidate.VLM9010.ToString());
throw new BusinessException(error);
}
if (!Equals(newPassword.Value, confirmNewPassword.Value))
{
ErrorItem error = new ErrorItem(confirmNewPassword.Owner, Messages.eValidate.VLM9009.ToString());
throw new BusinessException(error);
}
}
}
