//private static readonly ILog Log = LogManager.GetLogger(System.Reflection.MethodBase.GetCurrentMethod().DeclaringType); protected void Page_Load(object sender, EventArgs e) { if (Session["loginRole"] != null) { string loginRole = Session["loginRole"].ToString(); if (loginRole == "Audit") { if (!Page.IsPostBack) { FetchAuditTrialRecords(); DisableUnwantedExportFormat(ReportViewer1, "PDF"); DisableUnwantedExportFormat(ReportViewer1, "WORD"); string staffId = Session["StaffId"].ToString(); At.AuditTrailInsert(staffId, "AuditTrial was viewed", clientIPAddress, "Successful", DateTime.Now); } } else { Response.Redirect("~/login.aspx"); } } else { Response.Redirect("~/login.aspx"); } }
protected void chkSignIn_CheckedChanged(object sender, EventArgs e) { try { rco.CheckUserLoginForTheDay(userName, date); string chkSignInTrue = rco.IsSignIn; string userNameDb = rco.UserName; if (chkSignInTrue == "True") { rco.RcoSignOutUpdate(userName, CTime, date); lblMsg.Text = rco.DispMsg; lblMsg.ForeColor = System.Drawing.Color.Green; chkSignIn.Enabled = false; string staffId = Session["StaffId"].ToString(); At.AuditTrailInsert(staffId, Session["userName"] + "marked attendance register (sign out)!", clientIPAddress, "Successful", DateTime.Now); } else { lblMsg.Text = "You haven't signed in for today, please sign in before you sign out."; lblMsg.ForeColor = System.Drawing.Color.Red; chkSignIn.Enabled = false; } } catch (Exception ex) { //Log.Error(ex.Message + "\n\n\n" + ex.StackTrace); string pageName = System.IO.Path.GetFileName(Request.Url.AbsolutePath); El.EventLogInsert(ex.Message, ex.StackTrace, ex.Source, pageName, dt); lblMsg.Text = ex.Message; } }
protected void checkAuth() { string path = null; string user = null; string pass = null; path = ConfigurationManager.AppSettings["path"]; user = txtUsername.Text; pass = txtPassword.Text; try { string clientIPAddress = HttpContext.Current.Request.UserHostAddress; Session["IPAddress"] = clientIPAddress.ToString(); if (AuthenticateUser(user, pass) == true) { if (IsActive == "True") { At.AuditTrailInsert(staffId, Session["userName"] + " Logged in to the application!", clientIPAddress, "Successful", DateTime.Now); if (userRoles.ToString().Trim().ToLower() == "rco") { Session["LoginRole"] = "RCO"; Response.Redirect("~/RcoDashBoard.aspx"); } else if (userRoles.ToString().Trim().ToLower() == "audit") { Session["LoginRole"] = "Audit"; Response.Redirect("~/AuditDashBoard.aspx"); } else if (userRoles.ToString().Trim().ToLower() == "iscontrol") { Session["LoginRole"] = "ISControl"; Response.Redirect("~/IsControlDashBoard.aspx"); } else { msgLabel.Text = "User Not profiled!"; } } else { msgLabel.Text = "User account has been deactived, please contact ISControl!"; } } else { msgLabel.Text = "Incorrect username or password!"; //lblstatus.Text = "Invalid login account"; //audit.AuditTrail(nname, "Logging On", "Failed"); } } catch (Exception ex) { Log.Error(ex.Message + "\n\n\n" + ex.StackTrace); //string pageName = System.IO.Path.GetFileName(Request.Url.AbsolutePath); //El.EventLogInsert(ex.Message, ex.StackTrace, ex.Source, pageName, dt); //msgLabel.Text = ex.Message; } }
protected void LinkButton1_Click(object sender, EventArgs e) { string staffId = Session["StaffId"].ToString(); At.AuditTrailInsert(staffId, Session["userName"] + " logged out from the application!", clientIPAddress, "Successful", DateTime.Now); Session.Remove("userName"); Session.Remove("loginRole"); Session.Clear(); Session.Abandon(); Session["userName"] = null; Session["loginRole"] = null; FormsAuthentication.SignOut(); Response.Redirect("~/Login.aspx"); }
protected void chkSignIn_CheckedChanged(object sender, EventArgs e) { try { if (chkSignIn.Checked) { rco.RcoSignInInsert(userName, surName, firstName, rTime); lblMsg.Text = rco.DispMsg.ToString(); lblMsg.ForeColor = System.Drawing.Color.Green; chkSignIn.Enabled = false; string staffId = Session["StaffId"].ToString(); At.AuditTrailInsert(staffId, Session["userName"] + " marked attendance register (sign in)!", clientIPAddress, "Successful", DateTime.Now); } } catch (SqlException ex) { Log.Error(ex.Message + "\n\n\n" + ex.StackTrace); string pageName = System.IO.Path.GetFileName(Request.Url.AbsolutePath); El.EventLogInsert(ex.Message, ex.StackTrace, ex.Source, pageName, dt); } }
public void SelectUserRecord(string _userName) { try { SqlDataReader rder = null; using (var connection = new SqlConnection(strConnString)) { using (var command = new SqlCommand("SelectUserDetailOnLogin", connection)) { command.CommandType = CommandType.StoredProcedure; command.Parameters.Add("@Username", SqlDbType.VarChar, 50).Value = _userName.ToLower(); connection.Open(); rder = command.ExecuteReader(); while (rder.Read()) { StaffId = (rder["StaffId"].ToString()); userName = (rder["Username"].ToString().ToLower()); surName = (rder["Surname"].ToString()); firstName = (rder["Firstname"].ToString()); UserRoles = (rder["UserRoles"].ToString()); IsActive = (rder["IsActive"].ToString()); if (userName == _userName) { DspMsg = "Login Successful!"; } } if (userName != _userName) { DspMsg = "Incorrect username or password!"; At.AuditTrailInsert(StaffId, "Invalid User Login Attempt!", clientIPAddress, "UnSuccessful", DateTime.Now); } } } } catch (SqlException ex) { DspMsg = ex.Message; Log.Error(ex.InnerException + "\n\n" + ex.StackTrace); } }
protected void btnSave_Click(object sender, EventArgs e) { string userRole = ""; string UsernameTextInput = Server.HtmlEncode(txtUserName.Text); try { if (txtUserName.Text != "") { if (RadioButtonList1.SelectedIndex != -1) { if (DoesUserExist(UsernameTextInput) == true) { string userId = lblUserIdDsp.Text; string userName = Server.HtmlEncode(txtUserName.Text); string branch = "", surNameSession = "", firstNameSession = ""; try { branch = Session["staffBranch"].ToString(); surNameSession = Session["staffSurname"].ToString(); firstNameSession = Session["staffFirstname"].ToString(); } catch (Exception ex) { //Log.Error(ex.Message + "\n\n\n" + ex.StackTrace); string pageName = System.IO.Path.GetFileName(Request.Url.AbsolutePath); El.EventLogInsert(ex.Message, ex.StackTrace, ex.Source, pageName, dt); lblMsg.Text = "User does not exist!"; lblUserIdDsp.Text = ""; lblMsg.ForeColor = System.Drawing.Color.Red; RadioButtonList1.SelectedIndex = -1; } Um.UserId = userId; Um.Username = userName; Um.Branch = branch; foreach (ListItem li in RadioButtonList1.Items) { if (li.Selected) { userRole = li.Text.ToLower(); Um.UserRole = userRole; } } Um.UserMgmtInsert(userId, userName, surNameSession, firstNameSession, branch, userRole); //GridView1.DataBind(); lblMsg.Text = Um.DispMsg; lblMsg.ForeColor = System.Drawing.Color.Green; string staffId = Session["StaffId"].ToString(); At.AuditTrailInsert(staffId, "User profile created, profile username: "******"Successful", DateTime.Now); } else if (DoesUserExist(UsernameTextInput) == false) { lblMsg.Text = "This user does not exist!"; lblUserIdDsp.Text = ""; lblMsg.ForeColor = System.Drawing.Color.Red; RadioButtonList1.SelectedIndex = -1; } } else { lblMsg.Text = "Please select user role!"; } } else { lblMsg.Text = "Please enter Username!"; lblMsg.ForeColor = System.Drawing.Color.Red; } } catch (Exception ex) { //Log.Error(ex.Message + "\n\n\n" + ex.StackTrace); string pageName = System.IO.Path.GetFileName(Request.Url.AbsolutePath); El.EventLogInsert(ex.Message, ex.StackTrace, ex.Source, pageName, dt); lblMsg.Text = ex.Message; lblMsg.ForeColor = System.Drawing.Color.Red; } }
protected void btnSearch_Click(object sender, EventArgs e) { List <string> dateConcatenated = new List <string>(); string month = "", day = "", year = "", convertedDate = ""; if (rdbUsernameAndDate.Checked) { if (txtUsername.Text != "") { string dateInput = Server.HtmlEncode(txtDate.Text); username = Server.HtmlEncode(txtUsername.Text); try { List <string> dateSplit = new List <string>(dateInput.Split('/')); for (int i = 2; i < dateSplit.Count; i++) // Loop with for. { day = dateSplit[0].ToString(); month = dateSplit[1].ToString(); year = dateSplit[2].ToString(); } convertedDate = year + "-" + month + "-" + day; date = Convert.ToDateTime(convertedDate); FetchRCORecordBYUsernameAndDate(username, date); string staffId = Session["StaffId"].ToString(); At.AuditTrailInsert(staffId, "RCO attendance register report was viewed, user selected search by username and date option", clientIPAddress, "Successful", DateTime.Now); } catch (Exception ex) { lblNoRecord.Text = ex.Message; string pageName = System.IO.Path.GetFileName(Request.Url.AbsolutePath); El.EventLogInsert(ex.Message, ex.StackTrace, ex.Source, pageName, dt); } } else { lblNoRecord.Text = "Enter search criteria!"; } } else if (rdbUsername.Checked) { string dateInput = Server.HtmlEncode(txtDate.Text); username = Server.HtmlEncode(txtUsername.Text); try { FetchRCORecordBYUsername(username); string staffId = Session["StaffId"].ToString(); At.AuditTrailInsert(staffId, "RCO attendance register report was viewed, user selected search by username option", clientIPAddress, "Successful", DateTime.Now); } catch (Exception ex) { lblNoRecord.Text = ex.Message; string pageName = System.IO.Path.GetFileName(Request.Url.AbsolutePath); El.EventLogInsert(ex.Message, ex.StackTrace, ex.Source, pageName, dt); } } else if (rdbDate.Checked) { string dateInput = Server.HtmlEncode(txtDate.Text); //username = Server.HtmlEncode(txtUsername.Text); try { List <string> dateSplit = new List <string>(dateInput.Split('/')); for (int i = 2; i < dateSplit.Count; i++) // Loop with for. { day = dateSplit[0].ToString(); month = dateSplit[1].ToString(); year = dateSplit[2].ToString(); } convertedDate = year + "-" + month + "-" + day; date = Convert.ToDateTime(convertedDate); FetchRCORecordBYDate(date); string staffId = Session["StaffId"].ToString(); At.AuditTrailInsert(staffId, "RCO attendance register report was viewed, user selected search by date option", clientIPAddress, "Successful", DateTime.Now); } catch (Exception ex) { lblNoRecord.Text = ex.Message; string pageName = System.IO.Path.GetFileName(Request.Url.AbsolutePath); El.EventLogInsert(ex.Message, ex.StackTrace, ex.Source, pageName, dt); } } }