public static bool CreateUser(string login, string pass)
{
switch (SAttr)
{
case "0":
{
string sqlExpression = "CreateUser";
using (SqlConnection connection = new SqlConnection(_connectionString))
{
connection.Open();
SqlCommand command = new SqlCommand(sqlExpression, connection);
command.CommandType = System.Data.CommandType.StoredProcedure;
SqlParameter loginParam = new SqlParameter
{
ParameterName = "@Login",
Value = login
};
command.Parameters.Add(loginParam);
SqlParameter passParam = new SqlParameter
{
ParameterName = "@Password",
Value = Crypt.CalcHash(pass)
};
command.Parameters.Add(passParam);
SqlParameter roleParam = new SqlParameter
{
ParameterName = "@Role",
Value = 1
};
command.Parameters.Add(roleParam);
int number = command.ExecuteNonQuery();
if (number > 0)
{
return(true);
}
else
{
return(false);
}
}
}
case "1":
{
ReadFiles();
if (UserRoles.ContainsKey(login))
{
return(false);
}
UserRoles.Add(login, Roles.User);
RecordFilesRoles(UserRoles);
RecordFilesPass(UserRoles, pass);
return(true);
}
default: return(false);
}
}
public static void RecordFilesPass(Dictionary <string, Roles> UR, string password)
{
using (StreamWriter sr1 = File.AppendText(Path + @"App_Data" + @"\password.txt"))
{
string LP = UR.Keys.Last() + ";" + Crypt.CalcHash(password);
sr1.WriteLine(LP);
}
}
public static Dictionary <string, string> LP()
{
Dictionary <string, string> logpass = new Dictionary <string, string>();
if (File.Exists(Path + @"App_Data" + @"\\password.txt"))
{
string[] alltable = File.ReadAllLines(Path + @"App_Data" + @"\\password.txt");
foreach (string s in alltable)
{
string[] LPTable = s.Split(';');
logpass.Add(LPTable[0], LPTable[1]);
}
}
else
{
using (StreamWriter sr1 = File.CreateText(Path + @"App_Data" + @"\password.txt"))
{
sr1.WriteLine("admin;" + Crypt.CalcHash("admin"));
}
logpass.Add("admin", Crypt.CalcHash("admin"));
}
return(logpass);
}
public static bool CanLogin(string login, string password)
{
string sAttr;
sAttr = ConfigurationManager.AppSettings["Mode"];
switch (sAttr)
{
case "0":
{
SetAdmin();
if (login.Length != 0)
{
string sqlExpression = "GetLogin";
using (SqlConnection connection = new SqlConnection(_connectionString))
{
connection.Open();
SqlCommand command = new SqlCommand(sqlExpression, connection);
command.CommandType = System.Data.CommandType.StoredProcedure;
SqlParameter loginParam = new SqlParameter
{
ParameterName = "@Login",
Value = login
};
command.Parameters.Add(loginParam);
SqlDataReader reader = command.ExecuteReader();
if (reader.Read())
{
if ((string)reader.GetValue(0) == login && (string)reader.GetValue(1) == Crypt.CalcHash(password))
{
return(true);
}
else
{
return(false);
}
}
else
{
return(false);
}
}
}
else
{
return(true);
}
}
case "1":
{
Path = AppDomain.CurrentDomain.BaseDirectory;
Dictionary <string, string> logpass = new Dictionary <string, string>();
logpass = LP();
if (login.Length != 0)
{
if (logpass.ContainsKey(login))
{
if (logpass[login] == Crypt.CalcHash(password))
{
return(true);
}
else
{
return(false);
}
}
else
{
return(false);
}
}
else
{
return(true);
}
}
default:
{
Path = AppDomain.CurrentDomain.BaseDirectory;
Dictionary <string, string> logpass = new Dictionary <string, string>();
logpass = LP();
if (login.Length != 0)
{
if (logpass.ContainsKey(login))
{
if (logpass[login] == Crypt.CalcHash(password))
{
return(true);
}
else
{
return(false);
}
}
else
{
return(false);
}
}
else
{
return(true);
}
}
}
}
