// ---- funciones-------
public bool CreateUser(UserBE userBE)
{
bool registrado = false;
try
{
using (SqlConnection cnx = new SqlConnection(connectionString))
{
SqlCommand cmd = new SqlCommand("usp_CreationUser", cnx);
cmd.CommandType = CommandType.StoredProcedure;
cmd.CommandTimeout = 600;//6 segundos
SQLHelper.AddParam(ref cmd, "@user_role", ParameterDirection.Input, SqlDbType.Int, userBE.User_Role);
SQLHelper.AddParam(ref cmd, "@username", ParameterDirection.Input, SqlDbType.VarChar, userBE.username);
SQLHelper.AddParam(ref cmd, "@name", ParameterDirection.Input, SqlDbType.VarChar, userBE.Name);
SQLHelper.AddParam(ref cmd, "@lastname", ParameterDirection.Input, SqlDbType.VarChar, userBE.LastName);
SQLHelper.AddParam(ref cmd, "@email", ParameterDirection.Input, SqlDbType.VarChar, userBE.Email);
SQLHelper.AddParam(ref cmd, "@phonenumber", ParameterDirection.Input, SqlDbType.VarChar, userBE.PhoneNumber);
SQLHelper.AddParam(ref cmd, "@userid", ParameterDirection.Input, SqlDbType.VarChar, userBE.IdUser);
//Encriptar contrasenia
var pass = PasswordSC.PasswordEncriptarSHA512(userBE.Password);
SQLHelper.AddParam(ref cmd, "@password", ParameterDirection.Input, SqlDbType.VarChar, pass);
SQLHelper.AddParam(ref cmd, "@dni", ParameterDirection.Input, SqlDbType.VarChar, userBE.DNI);
SQLHelper.AddParam(ref cmd, "@birthday", ParameterDirection.Input, SqlDbType.DateTime, userBE.Birthday);
SQLHelper.AddParam(ref cmd, "@status", ParameterDirection.Input, SqlDbType.Char, userBE.Status);
SQLHelper.AddParam(ref cmd, "@gener", ParameterDirection.Input, SqlDbType.Char, userBE.Gener);
//para recibir un parametro de respuesta del storedprocedure
//cmd.Parameters.Add("@userId", SqlDbType.UniqueIdentifier).Direction = ParameterDirection.Output;
//abrimos la conexion
cnx.Open();
//ejecutamos el query
cmd.ExecuteNonQuery();
//obtenemos el valor de respuesta despues de recibir el output del stored procedure
//var userid = cmd.Parameters["@userId"].ToString();
registrado = true;
}
}
catch (Exception e)
{
throw new Exception(e.Message);
}
return(registrado);
}
public UserLoginBE getLogin(String username, String password)
{
UserLoginBE user = new UserLoginBE();
try
{
using (SqlConnection cnx = new SqlConnection(connectionString))
{
SqlCommand cmd = new SqlCommand("usp_login", cnx);
cmd.CommandType = CommandType.StoredProcedure;
cmd.CommandTimeout = 600;
cmd.Parameters.Add("@username", SqlDbType.VarChar).Value = username;
var pass = PasswordSC.PasswordEncriptarSHA512(password);
cmd.Parameters.Add("@password", SqlDbType.VarChar).Value = pass;
cnx.Open();
IDataReader dr = cmd.ExecuteReader();
using (dr)
{
while (dr.Read())
{
user.IdUser = dr.GetGuid(dr.GetOrdinal("IdUser")).ToString();
user.Name = dr.GetString(dr.GetOrdinal("Name"));
user.LastName = dr.GetString(dr.GetOrdinal("LastName"));
user.DNI = dr.GetString(dr.GetOrdinal("DNI"));
user.Role = dr.GetString(dr.GetOrdinal("rol"));
}
}
}
}
catch (Exception ex)
{
throw new Exception(ex.Message);
}
return(user);
}
