public ActionResult Index(User user)
{
if (ModelState.IsValid)
{
if (user.loginUser(user))
{
String loginName = user.username;
String account = user.accountType.ToString();
String loggedIn = user.loggedIn.ToString();
//Store in session
Session["loginName"] = loginName;
Session["account"] = account;
Session["loggedIn"] = loggedIn;
return RedirectToAction("Index", "Store");
}
else
{
ModelState.AddModelError("", "The user name or password provided is incorrect." );
return View(user);
}
}else
{
return View(user);
}
}
public ActionResult Register(User user)
{
if (ModelState.IsValid)
{
user.registerUser(user);
return RedirectToAction("Login", "Login");
}
else
{
return View(user);
}
}
public ActionResult Complete(User user)
{
if (ModelState.IsValid)
{
user.completeUser(user);
}
else
{
return View(user);
}
return RedirectToAction("Complete");
}
public ActionResult Register(User user)
{
if (ModelState.IsValid)
{
user.registerUser(user);
}
else
{
return View(user);
}
return View();
}
public Boolean checkLogin(User user)
{
this.dt = new DataTable();
String checkedUsername = "";
String checkedPassword = "";
using (MySqlConnection con = new MySqlConnection(con_str))
{
con.Open();
using (MySqlCommand cmd = new MySqlCommand("getUserDetails", con))
{
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.AddWithValue("@username", username);
MySqlDataReader reader = null;
reader = cmd.ExecuteReader();
while (reader.Read())
{
checkedUsername = reader.GetString("username");
checkedPassword = Encryption.Decrypt(reader.GetString("password"));
Debug.WriteLine("PASSWORD " + password);
string s = reader.GetString("accountType");
accountType = (AccountType)Enum.Parse(typeof(AccountType), s);
}
reader.Close();
con.Close();
}
}
if (password.Equals(checkedPassword))
{
password = checkedPassword;
username = checkedUsername;
return true;
}
else
return false;
}
public void registerUser(User user)
{
using (MySqlConnection con = new MySqlConnection(con_str))
{
con.Open();
using (MySqlCommand cmd = new MySqlCommand("registerUser", con))
{
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.AddWithValue("@username", user.username);
cmd.Parameters.AddWithValue("@password", Encryption.Encrypt(user.password));
cmd.Parameters.AddWithValue("@accountType", user.accountType.ToString());
cmd.ExecuteNonQuery();
con.Close();
}
}
}
public Boolean loginUser(User user)
{
using (MySqlConnection con = new MySqlConnection(con_str))
{
if (checkLogin(user))
{
loggedIn = true;
return true;
}
else
return false;
}
}
public void completeConsumer(User user)
{
using (MySqlConnection con = new MySqlConnection(con_str))
{
con.Open();
using (MySqlCommand cmd = new MySqlCommand("completeConsumer", con))
{
cmd.CommandType = CommandType.StoredProcedure;
//params for insert into contact
cmd.Parameters.AddWithValue("@title", user.title.ToString());
cmd.Parameters.AddWithValue("@forename", user.forename);
cmd.Parameters.AddWithValue("@surname", user.surname);
cmd.Parameters.AddWithValue("@firstNumber", user.firstNumber);
if (s.secondaryNumber != null)
{
cmd.Parameters.AddWithValue("@secondaryNumber", s.secondaryNumber);
}
else
{
cmd.Parameters.AddWithValue("@secondaryNumber", null);
}
cmd.Parameters.AddWithValue("@email", s.email);
if (s.fax != null)
{
cmd.Parameters.AddWithValue("@fax", s.fax);
}
else
{
cmd.Parameters.AddWithValue("@fax", null);
}
cmd.ExecuteNonQuery();
con.Close();
}
}
}
