protected void Page_Load(object sender, EventArgs e)
{
if (Request.QueryString["ID"] != null)
{
if (!Account.ValidEmail(Account.ID2Email(Convert.ToUInt32(Request.QueryString["ID"].ToString()))))
Response.Redirect("~Admin/Clients");
if (Session["User"] == null)
Response.Redirect("~/Account/Login?ReturnUrl=Admin/Clients");
WebsiteUser Op = (WebsiteUser)Session["User"];
if (Op.Level != 3)
Response.Redirect("~/Default");
if (!IsPostBack)
{
WebsiteUser Client = new WebsiteUser(Account.ID2Email(Convert.ToUInt32(Request.QueryString["ID"].ToString())), 1);
Nome.Text = Client.Username;
Contacto.Text = Convert.ToString(Client.Contact);
Email.Text = Client.Email;
Morada.Text = Client.Address;
BI.Text = Convert.ToString(Client.CC);
Contribuinte.Text = Convert.ToString(Client.FiscalNumber);
}
}
else
Response.Redirect("~/Admin/Clients");
}
protected void LogIn(object sender, EventArgs e)
{
if (Page.IsValid)
{
if(Account.ValidEmail(Email.Text))
{
switch(Account.Login(Email.Text, Password.Text, Response))
{
case 0:
FailureText.Text = "Dados incorrectos ou conta recentemente eliminada.";
ErrorMessage.Visible = true;
break;
case 1:
Session["User"] = new WebsiteUser(Email.Text, 1);
if (Request.QueryString["ReturnUrl"] != null)
{
Response.Redirect("~/" + Request.QueryString["ReturnUrl"].ToString());
}
else
Response.Redirect("~/Account/Manage");
break;
case 2:
Session["User"] = new WebsiteUser(Email.Text, 2);
if (Request.QueryString["ReturnUrl"] != null)
{
Response.Redirect("~/" + Request.QueryString["ReturnUrl"].ToString());
}
else
Response.Redirect("~/Account/Manage");
break;
case 3:
Session["User"] = new WebsiteUser(Email.Text, 3);
if (Request.QueryString["ReturnUrl"] != null)
{
Response.Redirect("~/" + Request.QueryString["ReturnUrl"].ToString());
}
else
Response.Redirect("~/Account/Manage");
break;
}
}
else
{
FailureText.Text = "Conta inexistente.";
ErrorMessage.Visible = true;
}
}
}
protected void SaveData_Click(object sender, EventArgs e)
{
WebsiteUser Client = new WebsiteUser(Account.ID2Email(Convert.ToUInt32(Request.QueryString["ID"].ToString())), 1);
Client.Contact = Convert.ToDouble(Contacto.Text);
Client.Email = Email.Text;
Client.Address = Morada.Text;
Client.CC = Convert.ToUInt32(BI.Text);
Client.FiscalNumber = Convert.ToUInt32(Contribuinte.Text);
if (Client.SaveChangesToDatabase())
{
FailureText.Text = "Dados alterados com sucesso.";
ErrorMessage.Visible = true;
}
else
{
FailureText.Text = "Erro ao alterar dados.";
ErrorMessage.Visible = true;
}
}
protected void SaveData_Click(object sender, EventArgs e)
{
WebsiteUser Op = (WebsiteUser)Session["User"];
Op.Contact = Convert.ToDouble(Contacto.Text);
Op.Email = Email.Text;
Op.Address = Morada.Text;
Op.CC = Convert.ToUInt32(BI.Text);
Op.FiscalNumber = Convert.ToUInt32(Contribuinte.Text);
if(Op.SaveChangesToDatabase())
{
FailureText.Text = "Dados alterados com sucesso.";
ErrorMessage.Visible = true;
Session["User"] = new WebsiteUser(Op.Email, 1);
}
else
{
FailureText.Text = "Erro ao alterar dados.";
ErrorMessage.Visible = true;
}
}
protected void ChangePassword(object sender, EventArgs e)
{
WebsiteUser Op = (WebsiteUser)Session["User"];
if (IsValid)
{
if (SEM.Encrypt(CurrentPassword.Text, Account.Email2Hash(Op.Email)) == Account.Email2EncryptedPassword(Op.Email))
{
if (SEM.Encrypt(CurrentPassword.Text, Account.Email2Hash(Op.Email)) != SEM.Encrypt(NewPassword.Text, Account.Email2Hash(Op.Email)))
{
Op.EncryptedPassword = SEM.Encrypt(NewPassword.Text, Account.Email2Hash(Op.Email));
if(Op.SaveChangesToDatabase())
{
FailureText.Text = "Password alterada com sucesso. Por favor volte a fazer login.";
ErrorMessage.Visible = true;
Session["User"] = new WebsiteUser(Op.Email, 1);
Response.AddHeader("REFRESH", "5;URL=Logout");
}
else
{
FailureText.Text = "Erro desconhecido.";
ErrorMessage.Visible = true;
}
}
else
{
FailureText.Text = "Password actual nao pode ser igual à nova.";
ErrorMessage.Visible = true;
}
}
else
{
FailureText.Text = "Password actual incorrecta.";
ErrorMessage.Visible = true;
}
}
}
public static void LoadPayments(WebsiteUser Obj, HttpResponse Response)
{
String query = String.Format("SELECT * FROM dbo.PAGAMENTO WHERE IDCLIENTE='{0}'", Obj.ClientID);
DataTable temp;
temp = db.GetDataTable(query);
foreach(DataRow r in temp.Rows)
{
Response.Write("<div class='col-md-4'>");
Response.Write("<h4><u>Data: </u> " + r["DATA_LIMITE"].ToString().Remove(11) + "</h4>");
Response.Write("<p><a class='btn btn-default' href='\\Account\\Payments\\Payment?PaymentID=" + r["IDPAGAMENTO"].ToString() + "'>Detalhes »</a></p>");
Response.Write("</div>");
}
}
public static Boolean isValidOwner(WebsiteUser obj, UInt32 AnimalID)
{
db = new SQLDatabaseManager();
String query = "SELECT * FROM dbo.ANIMAL WHERE IDCLIENTE='" + obj.ClientID + "' AND IDANIMAL='" + AnimalID + "'";
DataTable temp;
temp = db.GetDataTable(query);
if (temp.Rows.Count > 0)
return true;
return false;
}