public string GetPayeeId(string Payee)
{
DbLink DbLink = new DbLink();
string Employee_Number = "";
using (SqlConnection conn = DbLink.InitializeSqlConnection())
{
SqlCommand comm = new SqlCommand(
"SELECT Employee_Number " +
"FROM dbo.tbl_Payee " +
"WHERE Employee_Name = '" + Payee + "'",
conn);
conn.Open();
SqlDataReader reader = comm.ExecuteReader();
if (reader.HasRows)
{
while (reader.Read())
{
Employee_Number = reader.GetString(0);
}
}
else
{
reader.Close();
comm = new SqlCommand(
"SELECT Employee_Number " +
"FROM dbo.tbl_Ext_Payee " +
"WHERE Employee_Name = '" + Payee + "'",
conn);
reader = comm.ExecuteReader();
if (reader.HasRows)
{
while (reader.Read())
{
Employee_Number = reader.GetString(0);
}
}
}
reader.Close();
}
return(Employee_Number);
}
private void btnOK_Click(object sender, EventArgs e)
{
Interface.DbLink dbLink = new Interface.DbLink();
if (dbLink.userValidate(StaffNumber, txtOldPass.Text))
{
dbLink.ChangePassword(StaffNumber, txtNewPass0.Text);
this.DialogResult = DialogResult.OK;
}
else
{
MessageBox.Show("Please enter the valid old password for this account.",
"Access Denied", MessageBoxButtons.OK, MessageBoxIcon.Exclamation);
}
}
public bool CheckIfAdmin(string userName)
{
DbLink dbLink = new DbLink();
using (SqlConnection conn = dbLink.InitializeSqlConnection())
{
SqlCommand comm = new SqlCommand(
"SELECT * FROM dbo.tbl_BO_Staff " +
"WHERE BStaff_Number = '" + userName + "' AND " +
"Discriminator = 'Admin'", conn);
conn.Open();
SqlDataReader reader = comm.ExecuteReader();
return(reader.HasRows);
}
}
private void btnLogin_Click(object sender, EventArgs e)
{
Interface.DbLink DbLink = new Interface.DbLink();
if (DbLink.userValidate(txtBStaffNumber.Text, txtPassword.Text))
{
this.DialogResult = DialogResult.OK;
}
else
{
MessageBox.Show(
"User credentials do not match. Please try again.",
"Access Denied",
MessageBoxButtons.OK,
MessageBoxIcon.Exclamation);
txtPassword.Clear();
}
}
