private void authenticate()
{
ViewState["check"] = (1).ToString();
Session["logintime"] = DateTime.Now;
string s = Loginframe.UserName;
string psswd = Loginframe.Password;
string userid;
try
{
OdbcCommand login = new OdbcCommand();
login.Parameters.AddWithValue("tblname", "m_user");
login.Parameters.AddWithValue("attribute", "username,password,level,user_id,staff_id,defaultform");
login.Parameters.AddWithValue("conditionv", "username='******' and rowstatus<>" + 2 + "");
OdbcDataReader rd1 = objDAL.SpGetReader("CALL selectcond(?,?,?)", login);
string strHostName = System.Net.Dns.GetHostName();
// string clientIPAddress = System.Net.Dns.GetHostAddresses(strHostName).GetValue(0).ToString();
string clientIPAddress = System.Web.HttpContext.Current.Request.UserHostAddress;
string ipaddress = System.Web.HttpContext.Current.Request.UserHostAddress;
string counter = @"SELECT counter_no,counter_id FROM m_sub_counter WHERE counter_ip='" + ipaddress + "'";
DataTable dt_counter = objDAL.DtTbl(counter);
if (dt_counter.Rows.Count > 0)
{
Session["counter"] = dt_counter.Rows[0][0].ToString();
Session["counter_id"] = dt_counter.Rows[0][1].ToString();
}
if (rd1.Read())
{
userid = rd1[3].ToString();
string user = rd1[0].ToString();
string pwd1 = rd1[1].ToString();
string pwd = base64Decode(pwd1);
int level = int.Parse(rd1[2].ToString());
int staffid = int.Parse(rd1[4].ToString());
Session["staffid"] = staffid.ToString();
defaultform = int.Parse(rd1[5].ToString());
rd1.Close();
try
{
OdbcCommand cmdstaff = new OdbcCommand();
cmdstaff.Parameters.AddWithValue("tblname", "m_staff as st,m_sub_designation as desig,m_sub_office as office");
cmdstaff.Parameters.AddWithValue("attribute", "desig.designation,office.office");
cmdstaff.Parameters.AddWithValue("conditionv", "staff_id=" + staffid + " and desig.desig_id=st.desig_id and office.office_id=st.office_id");
OdbcDataReader rdstaff = objDAL.SpGetReader("CALL selectcond(?,?,?)", cmdstaff);
if (rdstaff.Read())
{
desgination = rdstaff[0].ToString();
office = rdstaff[1].ToString();
}
}
catch
{
}
if (s.Equals(user))
{
if (psswd.Equals(pwd))
{
OdbcCommand cmddefaultform = new OdbcCommand();
cmddefaultform.Parameters.AddWithValue("tblname", "m_user as user,m_sub_form as form");
cmddefaultform.Parameters.AddWithValue("attribute", "form.formname");
cmddefaultform.Parameters.AddWithValue("conditionv", "form.form_id=" + defaultform + "");
OdbcDataReader rddefault = objDAL.SpGetReader("CALL selectcond(?,?,?)", cmddefaultform);
if (rddefault.Read())
{
defaultformname = rddefault[0].ToString();
}
DateTime dt = DateTime.Now;
string date = dt.ToString("yyyy/MM/dd") + ' ' + dt.ToString("HH:mm:ss");
OdbcCommand cmd11 = new OdbcCommand();
cmd11.Parameters.AddWithValue("tblname", "t_login");
cmd11.Parameters.AddWithValue("attribute", "max(sno)");
DataTable dtt11 = new DataTable();
dtt11 = objDAL.SpDtTbl("call selectdata(?,?)", cmd11);
try
{
int ab = int.Parse(dtt11.Rows[0][0].ToString());
h = int.Parse(dtt11.Rows[0][0].ToString());
h = h + 1;
}
catch
{
h = 1;
}
Session["username"] = Loginframe.UserName;
Session["password"] = Loginframe.Password;
Session["level"] = level;
Session["designation"] = desgination;
Session["office"] = office;
Session["userid"] = userid;
Application["CheckFormLoad"] = 0;
Session["CheckFormLoad"] = 0;
Session["sno"] = h;
OdbcCommand cmd3 = new OdbcCommand();
cmd3.Parameters.AddWithValue("tblname", "t_login");
cmd3.Parameters.AddWithValue("val", "" + h + ",'" + userid + "','" + date + "',null," + 0 + ",'" + strHostName + "','" + clientIPAddress + "'");
try
{
objDAL.Procedures_void("CALL savedata(?,?)", cmd3);
}
catch { }
string hj = "~/" + defaultformname + ".aspx";
#region CHECK CURRENT DATE
try
{
OdbcCommand cmd246 = new OdbcCommand();
cmd246.Parameters.AddWithValue("tblname", "t_settings");
cmd246.Parameters.AddWithValue("attribute", "count(*)");
cmd246.Parameters.AddWithValue("conditionv", "is_current=1 and curdate() between start_eng_date and end_eng_date ");
OdbcDataReader dr = objDAL.SpGetReader("CALL selectcond(?,?,?)", cmd246);
while (dr.Read())
{
if (int.Parse(dr["count(*)"].ToString()) == 0)
{
MessageBox.Show("Current date not set", "Warning", MessageBoxButtons.OK, MessageBoxIcon.Information, MessageBoxDefaultButton.Button2, MessageBoxOptions.DefaultDesktopOnly);
hj = "settingmaster.aspx";
}
}
}
catch (Exception ex)
{
}
#endregion CHECK CURRENT DATE
ViewState["page"] = hj;
Loginframe.Visible = false;
if (Session["counter"] != null)
{
lblCounter.Text = "Do you wish to continue in counter- " + Session["counter"].ToString();
}
else
{
lblCounter.Text = "Counter not set, Please contact administrator..,";
}
SetFocus(btnYes);
this.ModalPopupExtender1.Show();
//Response.Redirect(hj, false);
}
else
{
Loginframe.FailureText = "Your login attempt was not successful. Please try again.";
lblOk.Text = "Your login attempt was not successful. Please try again.";
SetFocus(btnOk);
this.ModalPopupExtender2.Show();
}
}
else
{
Loginframe.FailureText = "Your login attempt was not successful. Please try again.";
lblOk.Text = "Your login attempt was not successful. Please try again.";
SetFocus(btnOk);
this.ModalPopupExtender2.Show();
}
}
else
{
Loginframe.FailureText = "Your login attempt was not successful. Please try again.".ToString();
lblOk.Text = "Your login attempt was not successful. Please try again.";
SetFocus(btnOk);
this.ModalPopupExtender2.Show();
}
}
catch { Response.Redirect("~Login frame.aspx"); }
}