public ReturnCode.result changePassword(DbUsers user) { using (SqlCommand cmd = new SqlCommand("CHANGE_PASSWORD", mConnection)) { cmd.CommandType = CommandType.StoredProcedure; cmd.Parameters.Add(new SqlParameter("@USERNAME", user.UserName)); cmd.Parameters.Add(new SqlParameter("@PASSWORD", user.Password)); int out1 = cmd.ExecuteNonQuery(); if (out1 == 1) { return(ReturnCode.result.success); } else { return(ReturnCode.result.fail); } } }
public ReturnCode.result UserRegistration(DbUsers user) { using (SqlCommand cmd1 = new SqlCommand("VALIDATE_USER", mConnection)) { cmd1.CommandType = CommandType.StoredProcedure; cmd1.Parameters.Add(new SqlParameter("@EMAILID", user.EmailID)); cmd1.Parameters.Add(new SqlParameter("@USERNAME", user.UserName)); using (SqlDataReader reader = cmd1.ExecuteReader()) { if (reader.HasRows) { return(ReturnCode.result.userexist); } } } //string column = "(UserName, Password, FirstName, LastName, EmailID, PhoneNumber)"; //String query1 = user.UserName + "','" + user.Password + "','" + user.FirstName + "','" + user.LastName + "','" + user.EmailID + "'," + user.PhoneNumber; //string query = "Insert into Users" + column + " values('" + query1 + ")"; using (SqlCommand cmd = new SqlCommand("INSERT_USER", mConnection)) { cmd.CommandType = CommandType.StoredProcedure; cmd.Parameters.Add(new SqlParameter("@USERNAME", user.UserName)); cmd.Parameters.Add(new SqlParameter("@PASSWORD", user.Password)); cmd.Parameters.Add(new SqlParameter("@FIRSTNAME", user.FirstName)); cmd.Parameters.Add(new SqlParameter("@LASTNAME", user.LastName)); cmd.Parameters.Add(new SqlParameter("@EMAILID", user.EmailID)); cmd.Parameters.Add(new SqlParameter("@PHONENUMBER", user.PhoneNumber)); int out1 = cmd.ExecuteNonQuery(); if (out1 == 1) { return(ReturnCode.result.success); } else { return(ReturnCode.result.fail); } } }
public DbUsers UserLogin(DbUsers user) { using (SqlCommand cmd1 = new SqlCommand("LOGIN_USER", mConnection)) { cmd1.CommandType = CommandType.StoredProcedure; cmd1.Parameters.Add(new SqlParameter("@USERNAME", user.UserName)); //cmd1.Parameters.Add(new SqlParameter("@PASSWORD", user.Password)); using (SqlDataReader reader = cmd1.ExecuteReader()) { while (reader.Read()) { user.UserId = (int)reader["UserId"]; user.FirstName = (string)reader["FirstName"]; user.LastName = (string)reader["LastName"]; user.EmailID = (string)reader["EmailID"]; user.PhoneNumber = (long)reader["PhoneNumber"]; user.Password = (string)reader["Password"]; return(user); } } } return(user); }