private bool esUnUsuarioRegistradoPorElAdministrador(Usuario usuario)
{
string pass_cli_nuevo = Encryptation.get_hash("pass_cli_nuevo");
string pass_emp_nueva = Encryptation.get_hash("pass_emp_nueva");
return(usuario.contrasenia.Equals(pass_cli_nuevo) || usuario.contrasenia.Equals(pass_emp_nueva));
}
private Usuario armarNueva()
{
Empresa empresa = new Empresa();
//Datos del usuario
empresa.id_usuario = 0; //no tiene ninguno asignado por ahora
empresa.username = this.tb_Username.Text;
empresa.contrasenia = Encryptation.get_hash(this.tb_Contraseña.Text);
empresa.telefono = Convert.ToDecimal(this.tb_Telefono.Text);
//Datos particulares
empresa.mail = this.tb_Correo_electronico.Text;
empresa.nombre_de_contacto = this.tb_Nombre_de_contacto.Text;
empresa.razon_social = this.tb_Razon_Social.Text;
empresa.cuit = this.tb_CUIT.Text;
empresa.fecha_creacion = this.dp_Fecha_de_creacion.Value;
//Domicilio
empresa.dom_calle = this.tb_Calle.Text;
empresa.piso = Convert.ToDecimal(this.tb_Piso.Text);
empresa.depto = this.tb_Departamento.Text;
empresa.localidad = this.tb_Localidad.Text;
empresa.cod_postal = this.tb_Codigo_postal.Text;
empresa.ciudad = this.tb_Ciudad.Text;
empresa.altura = Convert.ToDecimal(this.tb_Altura.Text);
return(empresa);
}
private Usuario armarUsuario()
{
Usuario usu = new Usuario();
usu.cantidadIntentos = this.usuario.cantidadIntentos;
usu.contrasenia = Encryptation.get_hash(this.tb_Constrasenia.Text);
usu.habilitada = this.usuario.habilitada;
usu.habilitada_comprar = this.usuario.habilitada_comprar;
usu.id_usuario = this.usuario.id_usuario;
usu.telefono = this.usuario.telefono;
usu.username = this.usuario.username;
return(usu);
}
private bool realizar_login()
{
string password_hash = Encryptation.get_hash(this.textBoxPassword.Text);
IdentificacionUsuario resultadoLogin = this.ValidarLogin(this.textBoxUsername.Text, password_hash);
if (loginSuccess(resultadoLogin))
{
return(true);
}
else
{
MessageDialog.MensajeError(this.getMensajeLogin(resultadoLogin));
return(false);
}
}
public static Client GetClient(string dni, string pass)
{
Client client = new Client();
try
{
Procedure proc = new Procedure();
Encryptation enc = new Encryptation();
string query = "select * from clients where dni = @1 and web_pass = @2";
using (MySqlConnection conn = new MySqlConnection(proc.StrConn))
{
if (conn.State != ConnectionState.Open)
{
conn.Open();
}
MySqlCommand cmd = new MySqlCommand(query, conn);
cmd.Parameters.AddWithValue("@1", dni);
cmd.Parameters.AddWithValue("@2", enc.Encrypt(pass));
MySqlDataAdapter da = new MySqlDataAdapter(cmd);
DataSet ds = new DataSet();
da.Fill(ds);
if (ds.Tables[0].Rows.Count > 0)
{
DataRow row = ds.Tables[0].Rows[0];
client.Id = (int)row["client_id"];
client.Dni = row["dni"] == null ? "" : row["dni"].ToString();
client.FirstName = row["first_name"] == null ? "" : row["first_name"].ToString();
client.LastName = row["last_name"] == null ? "" : row["last_name"].ToString();
client.Email = row["email"] == null ? "" : row["email"].ToString();
client.PhoneNumber1 = row["phone_number1"] == null ? "" : row["phone_number1"].ToString();
client.PhoneNumber2 = row["phone_number2"] == null ? "" : row["phone_number2"].ToString();
client.Address = row["address"] == null ? "" : row["address"].ToString();
client.Status = (int)row["status"];
HttpContext.Current.Session["client_id"] = client.Id;
}
}
}
catch (Exception ex)
{
throw new Exception(ex.Message);
}
return(client);
}
private void armarClienteModificado()
{
this.clienteEntidad.nombre = tb_Nombre.Text;
this.clienteEntidad.apellido = tb_Apellido.Text;
this.clienteEntidad.contrasenia = tb_Contraseña.Text != "123456" ? Encryptation.get_hash(tb_Contraseña.Text) : "123456";
this.clienteEntidad.username = tb_Nombre_de_usuario.Text;
this.clienteEntidad.localidad = tb_Localidad.Text;
this.clienteEntidad.mail = tb_Correo_electronico.Text;
this.clienteEntidad.cod_postal = tb_Codigo_postal.Text;
this.clienteEntidad.depto = tb_Departamento.Text;
this.clienteEntidad.dom_calle = tb_Calle.Text;
this.clienteEntidad.altura = Convert.ToDecimal(tb_Altura.Text);
this.clienteEntidad.fecha_nacimiento = dp_Fecha_de_nacimiento.Value;
this.clienteEntidad.nro_documento = tb_Numero_de_documento.Text;
this.clienteEntidad.piso = Convert.ToDecimal(tb_Piso.Text);
this.clienteEntidad.telefono = Convert.ToDecimal(tb_Telefono.Text);
this.clienteEntidad.tipo_documento = (TipoDocumento)cb_Tipo_de_documento.SelectedItem;
this.clienteEntidad.sexo = (Sexo)cb_Sexo.SelectedItem;
}
private Cliente armarNuevoCliente()
{
Cliente cliente = new Cliente();
cliente.id_usuario = 0; //no tiene ninguno asignado por ahora
cliente.username = this.textBox_Numero_de_documento.Text;
cliente.contrasenia = Encryptation.get_hash("pass_cli_nuevo");
cliente.telefono = Convert.ToDecimal(this.textBox_Telefono.Text);
cliente.nombre = this.textBox_Nombre.Text;
cliente.apellido = this.textBox_Apellido.Text;
cliente.nro_documento = Convert.ToString(this.textBox_Numero_de_documento.Text);
cliente.tipo_documento = (TipoDocumento)this.comboBox_Tipo_de_documento.SelectedItem;
cliente.sexo = (Sexo)this.comboBox_Sexo.SelectedItem;
cliente.mail = this.textBox_Correo_electronico.Text;
cliente.fecha_nacimiento = this.dp_Fecha_de_nacimiento.Value;
cliente.dom_calle = this.textBox_Calle.Text;
cliente.altura = Convert.ToDecimal(this.tb_Altura.Text);
cliente.piso = Convert.ToDecimal(this.textBox_Piso.Text);
cliente.depto = this.textBox_Departamento.Text;
cliente.localidad = this.textBox_Localidad.Text;
cliente.cod_postal = this.textBox_Codigo_postal.Text;
return(cliente);
}
private void armarClienteModificado()
{
this.empresaModificar.ciudad = tb_Ciudad.Text;
this.empresaModificar.cod_postal = tb_Codigo_postal.Text;
this.empresaModificar.contrasenia = tb_Contraseña.Text != "123456" ? Encryptation.get_hash(tb_Contraseña.Text) : "123456";
this.empresaModificar.username = tb_Username.Text;
this.empresaModificar.localidad = tb_Localidad.Text;
this.empresaModificar.mail = tb_Correo_electronico.Text;
this.empresaModificar.cod_postal = tb_Codigo_postal.Text;
this.empresaModificar.depto = tb_Departamento.Text;
this.empresaModificar.dom_calle = tb_Calle.Text;
this.empresaModificar.altura = Convert.ToDecimal(tb_Altura.Text);
this.empresaModificar.fecha_creacion = dp_Fecha_de_creacion.Value;
this.empresaModificar.piso = Convert.ToDecimal(tb_Piso.Text);
this.empresaModificar.telefono = Convert.ToDecimal(tb_Telefono.Text);
this.empresaModificar.razon_social = tb_Razon_Social.Text;
this.empresaModificar.cuit = tb_CUIT.Text;
this.empresaModificar.nombre_de_contacto = this.tb_Nombre_de_contacto.Text;
}
private bool modificoLaContrasenia()
{
string pass_usu_nuevo = Encryptation.get_hash("pass_usu_nuevo");
return(!this.tb_Constrasenia.Text.Equals(pass_usu_nuevo));
}
private void SetPassword(string password)
{
_encryptedPassword = Encryptation.GetMD5HashData(password) ?? throw new MemberDomainException($"{nameof(password)} is required.", new ArgumentNullException(nameof(password)), "Required");
}
public bool CheckIsValidPassword(string password)
{
return(Encryptation.ValidateMD5HashData(password, EncryptedPassword));
}
public HttpResponseMessage Get(string license, string owner, int mode)
{
try
{
Encryptation enc = new Encryptation();
// ========== MODE ==========
/* 1 = Consultar Licencia
* 2 = Registrar Licencia
*/
using (MySqlConnection conn = new MySqlConnection(strConn))
{
conn.Open();
MySqlCommand cmd;
MySqlDataAdapter da;
DataSet ds;
string query = "";
switch (mode)
{
case 1:
query = "SELECT * FROM serials WHERE serial = @1";
cmd = new MySqlCommand(query, conn);
cmd.Parameters.AddWithValue("@1", license);
da = new MySqlDataAdapter(cmd);
ds = new DataSet();
da.Fill(ds);
if (ds.Tables[0].Rows.Count > 0)
{
DataRow row = ds.Tables[0].Rows[0];
if (row["owner"].ToString().Equals(owner))
{
if (((DateTime)row["expiration_date"]) < DateTime.Today)
{
return(Request.CreateResponse(HttpStatusCode.Accepted, "EXPIRED"));
}
else
{
License lic = new License();
lic.Id = (int)row["id"];
lic.Serial = row["serial"].ToString();
lic.Type = row["type"].ToString();
lic.Owner = row["owner"].ToString();
lic.CreationDate = (DateTime)row["creation_date"];
lic.ExpirationDate = (DateTime)row["expiration_date"];
lic.Status = (int)row["status"];
return(Request.CreateResponse(HttpStatusCode.OK, JsonConvert.SerializeObject(lic)));
}
}
else
{
return(Request.CreateResponse(HttpStatusCode.Accepted, "NO OWNER"));
}
}
else
{
return(Request.CreateResponse(HttpStatusCode.NotFound));
}
default:
query = "SELECT * FROM serials WHERE serial = @1";
cmd = new MySqlCommand(query, conn);
cmd.Parameters.AddWithValue("@1", license);
da = new MySqlDataAdapter(cmd);
ds = new DataSet();
da.Fill(ds);
if (ds.Tables[0].Rows.Count > 0)
{
DataRow row = ds.Tables[0].Rows[0];
if (row["owner"].ToString().Equals("") || row["owner"].ToString().Equals(owner))
{
query = "UPDATE serials set " +
"owner = @1," +
"creation_date = @2," +
"expiration_date = @3 " +
"WHERE serial = @4";
cmd = new MySqlCommand(query, conn);
cmd.Parameters.AddWithValue("@1", owner);
cmd.Parameters.AddWithValue("@2", DateTime.Today);
cmd.Parameters.AddWithValue("@3", DateTime.Today.AddMonths(1));
cmd.Parameters.AddWithValue("@4", license);
cmd.ExecuteNonQuery();
query = "SELECT * FROM serials WHERE serial = @1";
cmd = new MySqlCommand(query, conn);
cmd.Parameters.AddWithValue("@1", license);
da = new MySqlDataAdapter(cmd);
ds = new DataSet();
da.Fill(ds);
row = ds.Tables[0].Rows[0];
License lic = new License();
lic.Id = (int)row["id"];
lic.Serial = row["serial"].ToString();
lic.Type = row["type"].ToString();
lic.Owner = row["owner"].ToString();
lic.CreationDate = (DateTime)row["creation_date"];
lic.ExpirationDate = (DateTime)row["expiration_date"];
lic.Status = (int)row["status"];
return(Request.CreateResponse(HttpStatusCode.OK, JsonConvert.SerializeObject(lic)));
}
else
{
return(Request.CreateResponse(HttpStatusCode.Accepted, "IN USE"));
}
}
else
{
return(Request.CreateResponse(HttpStatusCode.NotFound));
}
}
}
}
catch (Exception ex)
{
return(Request.CreateResponse(HttpStatusCode.InternalServerError, ex.Message));
}
}
public HttpResponseMessage login(string username, string password)
{
try
{
User user = new User();
Encryptation enc = new Encryptation();
string query = "SELECT " +
"user_id," +
"dni," +
"first_name," +
"last_name," +
"address," +
"email," +
"phone_number1," +
"phone_number2," +
"permission_level," +
"status," +
"image " +
"FROM users " +
"WHERE " +
"dni = @1 AND pass = @2";
using (MySqlConnection conn = new MySqlConnection(strConn))
{
conn.Open();
MySqlCommand cmd = new MySqlCommand(query, conn);
cmd.Parameters.AddWithValue("@1", username);
cmd.Parameters.AddWithValue("@2", enc.Encrypt(password));
MySqlDataAdapter da = new MySqlDataAdapter(cmd);
DataSet ds = new DataSet();
da.Fill(ds);
if (ds.Tables[0].Rows.Count > 0)
{
DataRow row = ds.Tables[0].Rows[0];
user.Id = (int)row["user_id"];
user.Dni = (long)row["dni"];
user.FirstName = row["first_name"].ToString();
user.LastName = row["last_name"].ToString();
user.Email = row["email"].ToString();
user.Address = row["address"].ToString();
user.PhoneNumber1 = long.Parse(row["phone_number1"].ToString());
user.PermissionLevel = (int)row["permission_level"];
user.Status = (int)row["status"];
//for (int i = 0; i < ds.Tables[0].Rows.Count; i++)
//{
// users.Add(user);
//}
return(Request.CreateResponse(HttpStatusCode.OK, JsonConvert.SerializeObject(user)));
}
else
{
return(Request.CreateResponse(HttpStatusCode.NoContent));
}
}
}
catch (Exception ex)
{
return(Request.CreateResponse(HttpStatusCode.InternalServerError, ex.Message));
}
}
