private void btnAddUser_Click(object sender, EventArgs e)
{
if (txtUsername.Text == "" || txtPassword.Text == "")
{
MessageBox.Show("Please enter all fields");
}
else if (txtPassword.Text == txtConfirmPassword.Text)
{
try
{
SHA1CryptoServiceProvider sh = new SHA1CryptoServiceProvider();
UTF8Encoding utf8 = new UTF8Encoding();
string hash = BitConverter.ToString(sh.ComputeHash(utf8.GetBytes(txtConfirmPassword.Text)));
SqlConnection con = new SqlConnection("Data Source=.;Initial Catalog=SP;Integrated Security=True");
SqlCommand cmd = new SqlCommand("insert into Active_User(Username,pass, Access)values(@User_Name,@Password,@access)", con);
cmd.Parameters.AddWithValue("@User_Name", txtUsername.Text);
cmd.Parameters.AddWithValue("@Password", hash);
cmd.Parameters.AddWithValue("@access", (cbAccessLevelName.SelectedValue));
con.Open();
//var q = db.Access_L.Where(u => u.Access_Level_Name == cbAccessLevelName.Text).FirstOrDefault();
//int Aid = Convert.ToInt32(q.Access_Level_Id.ToString());
//NewUser.Access = Aid;
//db.Active_User.Add(NewUser);
string check = @"(Select count(*) from Active_User where Username='******')";
SqlCommand cmda = new SqlCommand(check, con);
int count = (int)cmda.ExecuteScalar();
if (count > 0)
{
MessageBox.Show("A user with that username already exists");
}
else
{
try
{
//int description = 0;
//var AccessL = db.Access_L.Where(emp => emp.Access_Level_Name == cbAccessLevelName.Text).Select(u => u.Access_Level_Id).FirstOrDefault();
//description = AccessL;
//NewUser.Access = AccessL;
//NewAccess.Access_Level_Id = description;
//NewUser.Access = NewAccess.Access_Level_Id;
cmd.ExecuteNonQuery();
//db.Active_User.Add(NewUser);
//int myUser = NewUser.Active_User_Id;
}
catch (Exception ex)
{
MessageBox.Show("" + ex);
}
Active_User newuser = new Active_User();
MessageBox.Show("User successfully registered!");
this.Hide();
this.Close();
//Audit Log
int accessidz = newuser.Active_User_Id;
string user_Value = Convert.ToString(newuser);
Audit_Log Current_Audit6 = new Audit_Log();
Current_Audit6.Table_Name = "User";
// Current_Audit3.Users_Id = Globals.Users_Id;
Current_Audit6.Date_Time = DateTime.Now;
db.Audit_Log.Add(Current_Audit6);
db.SaveChanges();
int Log_ID6 = Current_Audit6.Audit_Log_Id;
Audit_Create_Delete Current_Create6 = new Audit_Create_Delete();
Current_Create6.Audit_Log_Id = Log_ID6;
Current_Create6.Created = true;
Current_Create6.PK_Row_Effected = accessidz;
Current_Create6.Value = user_Value;
db.Audit_Create_Delete.Add(Current_Create6);
db.SaveChanges();
this.Close();
this.Hide();
}
}
catch (SqlException ex)
{
if (ex.Number == 2627)
{
}
else
{
MessageBox.Show("An Error:" + ex.Message);
}
}
}
else if (txtPassword.Text != txtConfirmPassword.Text)
{
MessageBox.Show("Password and confirm Password fields do not match");
}
}
private void btnContinue_Click(object sender, EventArgs e)
{
string Hashb;
List <Active_User> myUser = new List <Active_User>();
try
{
myUser = db.Active_User.Where(someuser => someuser.Username == txtEmail.Text).ToList();
}
catch (Exception)
{
throw;
}
try
{
Active_User emp = myUser[0];
clsGlobals.Userlogin = myUser[0];
}
catch (Exception)
{
throw;
}
db.SaveChanges();
try
{
SHA1CryptoServiceProvider sh = new SHA1CryptoServiceProvider();
UTF8Encoding utf8 = new UTF8Encoding();
string hash = BitConverter.ToString(sh.ComputeHash(utf8.GetBytes(txtPassword.Text)));
SqlConnection con = new SqlConnection("Data Source=.;Initial Catalog=SP;Integrated Security=True");
SqlCommand cmd = new SqlCommand("select pass from Active_User where Username=@Username", con);
cmd.Parameters.AddWithValue("@Username", txtEmail.Text);
con.Open();
SqlDataReader dr = cmd.ExecuteReader();
dr.Read();
Hashb = dr[0].ToString();
con.Close();
if (txtEmail.Text == "")
{
lbWarningEmail.Visible = true;
//label4.Text = "Please Provide the username you wish to reset";
//correct = false;
}
if (txtPassword.Text == "")
{
lbWarningPassword.Visible = true;
//label4.Text = "Please Provide the username you wish to reset";
//correct = false;
}
if (hash == Hashb)
{
MessageBox.Show("Authorization was successful");
this.Dispose();
Users.FrmResetPassword rs = new Users.FrmResetPassword(3);
rs.ShowDialog();
rs.Focus();
}
else
{
MessageBox.Show("Authorization failed, please try again");
lbWarningEmail.Visible = true;
lbWarningPassword.Visible = true;
}
}
catch (InvalidOperationException ex)
{
MessageBox.Show("Error has occured:" + ex.Message);
}
}
