Ejemplo n.º 1
0
        // ---- funciones-------

        public bool CreateUser(UserBE userBE)
        {
            bool registrado = false;

            try
            {
                using (SqlConnection cnx = new SqlConnection(connectionString))
                {
                    SqlCommand cmd = new SqlCommand("usp_CreationUser", cnx);
                    cmd.CommandType    = CommandType.StoredProcedure;
                    cmd.CommandTimeout = 600;//6 segundos

                    SQLHelper.AddParam(ref cmd, "@user_role", ParameterDirection.Input, SqlDbType.Int, userBE.User_Role);
                    SQLHelper.AddParam(ref cmd, "@username", ParameterDirection.Input, SqlDbType.VarChar, userBE.username);
                    SQLHelper.AddParam(ref cmd, "@name", ParameterDirection.Input, SqlDbType.VarChar, userBE.Name);
                    SQLHelper.AddParam(ref cmd, "@lastname", ParameterDirection.Input, SqlDbType.VarChar, userBE.LastName);
                    SQLHelper.AddParam(ref cmd, "@email", ParameterDirection.Input, SqlDbType.VarChar, userBE.Email);
                    SQLHelper.AddParam(ref cmd, "@phonenumber", ParameterDirection.Input, SqlDbType.VarChar, userBE.PhoneNumber);
                    SQLHelper.AddParam(ref cmd, "@userid", ParameterDirection.Input, SqlDbType.VarChar, userBE.IdUser);

                    //Encriptar contrasenia
                    var pass = PasswordSC.PasswordEncriptarSHA512(userBE.Password);
                    SQLHelper.AddParam(ref cmd, "@password", ParameterDirection.Input, SqlDbType.VarChar, pass);

                    SQLHelper.AddParam(ref cmd, "@dni", ParameterDirection.Input, SqlDbType.VarChar, userBE.DNI);
                    SQLHelper.AddParam(ref cmd, "@birthday", ParameterDirection.Input, SqlDbType.DateTime, userBE.Birthday);
                    SQLHelper.AddParam(ref cmd, "@status", ParameterDirection.Input, SqlDbType.Char, userBE.Status);
                    SQLHelper.AddParam(ref cmd, "@gener", ParameterDirection.Input, SqlDbType.Char, userBE.Gener);
                    //para recibir un parametro de respuesta del storedprocedure
                    //cmd.Parameters.Add("@userId", SqlDbType.UniqueIdentifier).Direction = ParameterDirection.Output;

                    //abrimos la conexion
                    cnx.Open();
                    //ejecutamos el query
                    cmd.ExecuteNonQuery();

                    //obtenemos el valor de respuesta despues de recibir el output del stored procedure
                    //var userid = cmd.Parameters["@userId"].ToString();

                    registrado = true;
                }
            }
            catch (Exception e)
            {
                throw new Exception(e.Message);
            }

            return(registrado);
        }
Ejemplo n.º 2
0
        public UserLoginBE getLogin(String username, String password)
        {
            UserLoginBE user = new UserLoginBE();

            try
            {
                using (SqlConnection cnx = new SqlConnection(connectionString))
                {
                    SqlCommand cmd = new SqlCommand("usp_login", cnx);
                    cmd.CommandType    = CommandType.StoredProcedure;
                    cmd.CommandTimeout = 600;

                    cmd.Parameters.Add("@username", SqlDbType.VarChar).Value = username;
                    var pass = PasswordSC.PasswordEncriptarSHA512(password);
                    cmd.Parameters.Add("@password", SqlDbType.VarChar).Value = pass;

                    cnx.Open();
                    IDataReader dr = cmd.ExecuteReader();

                    using (dr)
                    {
                        while (dr.Read())
                        {
                            user.IdUser   = dr.GetGuid(dr.GetOrdinal("IdUser")).ToString();
                            user.Name     = dr.GetString(dr.GetOrdinal("Name"));
                            user.LastName = dr.GetString(dr.GetOrdinal("LastName"));
                            user.DNI      = dr.GetString(dr.GetOrdinal("DNI"));
                            user.Role     = dr.GetString(dr.GetOrdinal("rol"));
                        }
                    }
                }
            }
            catch (Exception ex)
            {
                throw new Exception(ex.Message);
            }

            return(user);
        }