public string GetPayeeId(string Payee) { DbLink DbLink = new DbLink(); string Employee_Number = ""; using (SqlConnection conn = DbLink.InitializeSqlConnection()) { SqlCommand comm = new SqlCommand( "SELECT Employee_Number " + "FROM dbo.tbl_Payee " + "WHERE Employee_Name = '" + Payee + "'", conn); conn.Open(); SqlDataReader reader = comm.ExecuteReader(); if (reader.HasRows) { while (reader.Read()) { Employee_Number = reader.GetString(0); } } else { reader.Close(); comm = new SqlCommand( "SELECT Employee_Number " + "FROM dbo.tbl_Ext_Payee " + "WHERE Employee_Name = '" + Payee + "'", conn); reader = comm.ExecuteReader(); if (reader.HasRows) { while (reader.Read()) { Employee_Number = reader.GetString(0); } } } reader.Close(); } return(Employee_Number); }
private void btnOK_Click(object sender, EventArgs e) { Interface.DbLink dbLink = new Interface.DbLink(); if (dbLink.userValidate(StaffNumber, txtOldPass.Text)) { dbLink.ChangePassword(StaffNumber, txtNewPass0.Text); this.DialogResult = DialogResult.OK; } else { MessageBox.Show("Please enter the valid old password for this account.", "Access Denied", MessageBoxButtons.OK, MessageBoxIcon.Exclamation); } }
public bool CheckIfAdmin(string userName) { DbLink dbLink = new DbLink(); using (SqlConnection conn = dbLink.InitializeSqlConnection()) { SqlCommand comm = new SqlCommand( "SELECT * FROM dbo.tbl_BO_Staff " + "WHERE BStaff_Number = '" + userName + "' AND " + "Discriminator = 'Admin'", conn); conn.Open(); SqlDataReader reader = comm.ExecuteReader(); return(reader.HasRows); } }
private void btnLogin_Click(object sender, EventArgs e) { Interface.DbLink DbLink = new Interface.DbLink(); if (DbLink.userValidate(txtBStaffNumber.Text, txtPassword.Text)) { this.DialogResult = DialogResult.OK; } else { MessageBox.Show( "User credentials do not match. Please try again.", "Access Denied", MessageBoxButtons.OK, MessageBoxIcon.Exclamation); txtPassword.Clear(); } }