public List <Confeiteira> BuscarTodos() { var lst = new List <Confeiteira>(); using (SqlConnection conn = new SqlConnection(ConfigurationManager.ConnectionStrings["Db"].ConnectionString)) { string strSQL = @"SELECT * FROM USUARIO;"; using (SqlCommand cmd = new SqlCommand(strSQL)) { conn.Open(); cmd.Connection = conn; cmd.CommandText = strSQL; var dataReader = cmd.ExecuteReader(); var dt = new DataTable(); dt.Load(dataReader); conn.Close(); foreach (DataRow row in dt.Rows) { var usuario = new Confeiteira() { Id = Convert.ToInt32(row["ID"]), Nome = row["NOME"].ToString(), Login = row["LOGINUSUARIO"].ToString(), Senha = row["SENHA"].ToString(), Email = row["EMAIL"].ToString() }; lst.Add(usuario); } } } return(lst); }
public void Inserir(Confeiteira obj) { using (SqlConnection conn = new SqlConnection(ConfigurationManager.ConnectionStrings["Db"].ConnectionString)) { string strSQL = @"INSERT INTO USUARIO (NOME, LOGINUSUARIO, SENHA, EMAIL) VALUES (@NOME, @LOGINUSUARIO, @SENHA, @EMAIL);"; using (SqlCommand cmd = new SqlCommand(strSQL)) { cmd.Connection = conn; cmd.Parameters.Add("@NOME", SqlDbType.VarChar).Value = obj.Nome; cmd.Parameters.Add("@LOGINUSUARIO", SqlDbType.VarChar).Value = obj.Login; cmd.Parameters.Add("@SENHA", SqlDbType.VarChar).Value = obj.Senha; cmd.Parameters.Add("@EMAIL", SqlDbType.VarChar).Value = obj.Email; foreach (SqlParameter parameter in cmd.Parameters) { if (parameter.Value == null) { parameter.Value = DBNull.Value; } } conn.Open(); cmd.ExecuteNonQuery(); conn.Close(); } } }
public ActionResult Entrar(Confeiteira obj) { var usuarioLogado = new UsuarioDAO().Logar(obj); if (usuarioLogado == null) { ViewBag.ErrorMsg = @"Login ou senha inválido!"; return(View("Index")); } var userData = new JavaScriptSerializer().Serialize(new Usuario() { Id = usuarioLogado.Id, Nome = usuarioLogado.Nome, Login = usuarioLogado.Email }); FormsAuthenticationUtil.SetCustomAuthCookie(usuarioLogado.Login, userData, false); return(RedirectToAction("Index", "Pedido")); }
public Confeiteira Logar(Confeiteira obj) { using (SqlConnection conn = new SqlConnection(ConfigurationManager.ConnectionStrings["Db"].ConnectionString)) { string strSQL = @"SELECT * FROM USUARIO WHERE LOGINUSUARIO = @LOGINUSUARIO AND SENHA = @SENHA;"; using (SqlCommand cmd = new SqlCommand(strSQL)) { conn.Open(); cmd.Connection = conn; cmd.Parameters.Add("@LOGINUSUARIO", SqlDbType.VarChar).Value = obj.Login; cmd.Parameters.Add("@SENHA", SqlDbType.VarChar).Value = obj.Senha; cmd.CommandText = strSQL; var dataReader = cmd.ExecuteReader(); var dt = new DataTable(); dt.Load(dataReader); conn.Close(); if (!(dt != null && dt.Rows.Count > 0)) { return(null); } var row = dt.Rows[0]; var Confeiteira = new Confeiteira() { Id = Convert.ToInt32(row["ID"]), Nome = row["NOME"].ToString(), Email = row["EMAIL"].ToString(), Login = row["LOGINUSUARIO"].ToString(), Senha = row["SENHA"].ToString() }; return(Confeiteira); } } }