private void backAA_Click(object sender, EventArgs e)
{
this.Close();
AdministrativeStaffDashboard obj = new AdministrativeStaffDashboard();
obj.Show();
}
private void backASM_Click(object sender, EventArgs e)
{
if (u.Type == "Admin")
{
this.Close();
AdminDashboard obj = new AdminDashboard();
obj.Show();
}
else if (u.Type == "Academic_Staff")
{
this.Close();
AcademicStaffDashBoard obj = new AcademicStaffDashBoard();
obj.Show();
}
else if (u.Type == "Non_Academic_Staff")
{
this.Close();
NonAcademicStaffDashboard obj = new NonAcademicStaffDashboard();
obj.Show();
}
else if (u.Type == "Administrative_Staff")
{
this.Close();
AdministrativeStaffDashboard obj = new AdministrativeStaffDashboard();
obj.Show();
}
}
private void btnLogin_Click(object sender, EventArgs e)
{
if (txtUsername.Text == "")
{
MessageBox.Show("Please enter username");
}
else if (txtUsername.Text == "")
{
MessageBox.Show("Please enter password");
}
else if (userType.Text == "")
{
MessageBox.Show("Please select usertype");
}
else
{
string conString = CommonConstants.connnectionString;
if (userType.Text.Equals("Academic Staff"))
{
using (SqlConnection connection = new SqlConnection(conString))
{
connection.Open();
SqlCommand command = new SqlCommand(null, connection);
command.CommandText = "SELECT * FROM Academic_Staff_Credentials WHERE stfID = @stfID ";
SqlParameter stfID = new SqlParameter("@stfID", SqlDbType.VarChar, 100);
stfID.Value = txtUsername.Text;
command.Parameters.Add(stfID);
// Call Prepare after setting the Commandtext and Parameters.
command.Prepare();
SqlDataReader reader = command.ExecuteReader();
if (reader.Read())
{
String secured_pwd_from_db = reader["password"].ToString();
String salt_from_db = reader["salt"].ToString();
String userID_from_db = reader["stfID"].ToString();
if (PasswordUtil.verifyUserPassword(txtPassword.Text, secured_pwd_from_db, salt_from_db))
{
User u = new User();
//populate u
//u.setuserID(userID_from_db);
u = getAcademicStaffObjectWithAllProperties(userID_from_db);
//Track Login - Start
TrackLogin("Academic Staff", connection, userID_from_db, conString);
//Track Login - End
UserSessionStore.Instance.setUser(u);
AcademicStaffDashBoard objAcdStfDashBoard = new AcademicStaffDashBoard();
this.Hide();
objAcdStfDashBoard.Show();
}
else
{
MessageBox.Show("Your password is incorrect.");
}
}
else
{
MessageBox.Show("Your Username or password not found.");
}
connection.Close();
}
}
else if (userType.Text.Equals("Administrative Staff"))
{
using (SqlConnection connection = new SqlConnection(conString))
{
connection.Open();
SqlCommand command = new SqlCommand(null, connection);
command.CommandText = "SELECT * FROM Administrative_Staff_credentials WHERE stfID = @stfID ";
SqlParameter stfID = new SqlParameter("@stfID", SqlDbType.VarChar, 100);
stfID.Value = txtUsername.Text;
command.Parameters.Add(stfID);
// Call Prepare after setting the Commandtext and Parameters.
command.Prepare();
SqlDataReader reader = command.ExecuteReader();
if (reader.Read())
{
String secured_pwd_from_db = reader["password"].ToString();
String salt_from_db = reader["salt"].ToString();
String userID_from_db = reader["stfID"].ToString();
if (PasswordUtil.verifyUserPassword(txtPassword.Text, secured_pwd_from_db, salt_from_db))
{
User u = new User();
//populate u
//u.setuserID(userID_from_db);
u = getAdministrativeStaffObjectWithAllProperties(userID_from_db);
//Track Login - Start
TrackLogin("Administrative Staff", connection, userID_from_db, conString);
//Track Login - End
UserSessionStore.Instance.setUser(u);
AdministrativeStaffDashboard objAdmStfDashBoard = new AdministrativeStaffDashboard();
this.Hide();
objAdmStfDashBoard.Show();
}
else
{
MessageBox.Show("Your password is incorrect.");
}
}
else
{
MessageBox.Show("Your Username or password not found.");
}
connection.Close();
}
}
else if (userType.Text.Equals("Admin"))
{
using (SqlConnection connection = new SqlConnection(conString))
{
connection.Open();
SqlCommand command = new SqlCommand(null, connection);
command.CommandText = "SELECT * FROM Admin_credentials WHERE adminID = @adminID ";
SqlParameter adminID = new SqlParameter("@adminID", SqlDbType.VarChar, 100);
adminID.Value = txtUsername.Text;
command.Parameters.Add(adminID);
// Call Prepare after setting the Commandtext and Parameters.
command.Prepare();
SqlDataReader reader = command.ExecuteReader();
if (reader.Read())
{
String secured_pwd_from_db = reader["password"].ToString();
String salt_from_db = reader["salt"].ToString();
String userID_from_db = reader["adminID"].ToString();
if (PasswordUtil.verifyUserPassword(txtPassword.Text, secured_pwd_from_db, salt_from_db))
{
User u = new User();
//populate u
u.setuserID(userID_from_db);
u.Type = "Admin";
//Track Login - Start
TrackLogin("Admin", connection, userID_from_db, conString);
//Track Login - End
UserSessionStore.Instance.setUser(u);
AdminDashboard objAdminDashboard = new AdminDashboard();
this.Hide();
objAdminDashboard.Show();
}
else
{
MessageBox.Show("Your password is incorrect.");
}
}
else
{
MessageBox.Show("Your Username or password not found.");
}
connection.Close();
}
}
else if (userType.Text.Equals("Non Academic Staff"))
{
using (SqlConnection connection = new SqlConnection(conString))
{
connection.Open();
SqlCommand command = new SqlCommand(null, connection);
command.CommandText = "SELECT * FROM Non_Academic_Staff_Credentials WHERE stfID = @stfID ";
SqlParameter stfID = new SqlParameter("@stfID", SqlDbType.VarChar, 100);
stfID.Value = txtUsername.Text;
command.Parameters.Add(stfID);
// Call Prepare after setting the Commandtext and Parameters.
command.Prepare();
SqlDataReader reader = command.ExecuteReader();
if (reader.Read())
{
String secured_pwd_from_db = reader["password"].ToString();
String salt_from_db = reader["salt"].ToString();
String userID_from_db = reader["stfID"].ToString();
if (PasswordUtil.verifyUserPassword(txtPassword.Text, secured_pwd_from_db, salt_from_db))
{
User u = new User();
//populate u
//u.setuserID(userID_from_db);
u = getNonAcademicStaffObjectWithAllProperties(userID_from_db);
//Track Login - Start
TrackLogin("Non Academic Staff", connection, userID_from_db, conString);
//Track Login - End
UserSessionStore.Instance.setUser(u);
NonAcademicStaffDashboard objNonAcdStfDashboard = new NonAcademicStaffDashboard();
this.Hide();
objNonAcdStfDashboard.Show();
}
else
{
MessageBox.Show("Your password is incorrect.");
}
}
else
{
MessageBox.Show("Your Username or password not found.");
}
connection.Close();
}
}
else
{
MessageBox.Show("Unknown user type!!!");
}
//Login validation end
}
}
