Exemple #1
0
    protected void ASPxGridView1_RowInserting(object sender, DevExpress.Web.Data.ASPxDataInsertingEventArgs e)
    {
        int totCnt = SafeValue.SafeInt(System.Configuration.ConfigurationManager.AppSettings["License"], 0);
        int cnt    = SafeValue.SafeInt(C2.Manager.ORManager.ExecuteScalar("SELECT COUNT(SequenceId) FROM [User]"), 0);

        if (cnt - 1 >= totCnt)
        {
            throw new Exception("Error, pls contact your IT");
        }
        else
        {
            ASPxGridView grd = sender as ASPxGridView;
            ASPxTextBox  pwd = grd.FindEditFormTemplateControl("txtPwd") as ASPxTextBox;
            if (pwd.Text == "")
            {
                e.Cancel = true;
                throw new Exception("Please enter the password .");
            }
            else
            {
                ASPxTextBox userId = grd.FindEditFormTemplateControl("txtCode") as ASPxTextBox;

                Encryption.EncryptClass encrypt = new Encryption.EncryptClass();
                e.NewValues["Pwd"] = encrypt.DESEnCode(userId.Text, pwd.Text);
            }
            e.NewValues["IsActive"] = true;
        }
    }
Exemple #2
0
        public override bool ValidateUser(string userName, string password)
        {
            OPathQuery query = new OPathQuery(typeof(C2.User), "Name='" + userName + "'", "Name");

            C2.User user = C2.Manager.ORManager.GetObject(query) as C2.User;
            if (user == null)
            {
                return(false);
            }
            Encryption.EncryptClass encrypt = new Encryption.EncryptClass();
            return(SafeValue.SafeString(encrypt.DESEnCode(userName, password), "") == user.Pwd);
            // return (user.Pwd == password);
        }
Exemple #3
0
    protected void ASPxGridView1_RowUpdating(object sender, DevExpress.Web.Data.ASPxDataUpdatingEventArgs e)
    {
        ASPxGridView grd = sender as ASPxGridView;
        ASPxTextBox  pwd = grd.FindEditFormTemplateControl("txtPwd") as ASPxTextBox;

        if (pwd.Text == "")
        {
            //e.Cancel = true;
            //throw new Exception("Please enter the password .");
        }
        else
        {
            ASPxTextBox userId = grd.FindEditFormTemplateControl("txtCode") as ASPxTextBox;

            Encryption.EncryptClass encrypt = new Encryption.EncryptClass();
            e.NewValues["Pwd"] = encrypt.DESEnCode(userId.Text, pwd.Text);
        }
    }
Exemple #4
0
    public void User_register_Submit(string info)
    {
        JObject jo       = (JObject)JsonConvert.DeserializeObject(HttpUtility.UrlDecode(Server.UrlDecode(info)));
        string  mobile   = SafeValue.SafeString(jo["account"]);
        string  pw       = SafeValue.SafeString(jo["password"]);
        string  username = SafeValue.SafeString(jo["userName"]);
        bool    status   = false;
        string  context  = "";

        Encryption.EncryptClass encrypt = new Encryption.EncryptClass();
        string pw_mm = SafeValue.SafeString(encrypt.DESEnCode(username, pw), "");

        List <ConnectSql_mb.cmdParameters> list = new List <ConnectSql_mb.cmdParameters>();

        list.Add(new ConnectSql_mb.cmdParameters("@Name", username, SqlDbType.NVarChar, 100));
        list.Add(new ConnectSql_mb.cmdParameters("@Pwd", pw_mm, SqlDbType.NVarChar, 100));
        list.Add(new ConnectSql_mb.cmdParameters("@Tel", mobile, SqlDbType.NVarChar, 100));

        string    sql = string.Format(@"select * from [User] where Name=@Name,Tel=@Tel");
        DataTable dt  = ConnectSql_mb.GetDataTable(sql, list);

        if (dt.Rows.Count == 0)
        {
            sql = string.Format(@"insert into [User] (Name,Pwd,Email,Tel,Role,IsActive,CustId,Port) values(@Name,@Pwd,'',@Tel,'Client',1,'','')");
            ConnectSql_mb.sqlResult result = ConnectSql_mb.ExecuteNonQuery(sql, list);
            status = result.status;
            if (!status)
            {
                context = result.context;
            }
        }
        else
        {
            context = "This user name or mobile have be registered";
        }
        context = Common.StringToJson(context);
        Common.WriteJsonP(status, context);
    }
Exemple #5
0
    public void UserLogin_Login(string info)
    {
        string  info_   = HttpUtility.UrlDecode(Server.UrlDecode(info));
        JObject jo      = (JObject)JsonConvert.DeserializeObject(info_);
        bool    status  = false;
        string  context = Common.StringToJson("");
        string  account = jo["account"].ToString();
        string  pw      = jo["password"].ToString();

        if (account == null || account.Length <= 0)
        {
            context = Common.StringToJson("Request Account");
        }
        else
        {
            List <ConnectSql_mb.cmdParameters> list = new List <ConnectSql_mb.cmdParameters>();
            ConnectSql_mb.cmdParameters        cpar = null;
            string sql = string.Format(@"select * from [user] where IsActive=1 and Tel=@Tel and Role='Client'");
            cpar = new ConnectSql_mb.cmdParameters("@Tel", account, SqlDbType.NVarChar, 100);
            list.Add(cpar);
            DataTable dt = ConnectSql_mb.GetDataTable(sql, list);
            if (dt.Rows.Count > 0)
            {
                Encryption.EncryptClass encrypt = new Encryption.EncryptClass();
                for (int i = 0; i < dt.Rows.Count; i++)
                {
                    string PW_code = SafeValue.SafeString(encrypt.DESEnCode(dt.Rows[i]["Name"].ToString(), pw), "");
                    if (PW_code.Equals(dt.Rows[i]["Pwd"].ToString()))
                    {
                        sql  = string.Format(@"select * from [user] where SequenceId=@SequenceId");
                        list = new List <ConnectSql_mb.cmdParameters>();
                        cpar = new ConnectSql_mb.cmdParameters("@SequenceId", dt.Rows[i]["SequenceId"], SqlDbType.Int);
                        list.Add(cpar);
                        DataTable dt1 = ConnectSql_mb.GetDataTable(sql, list);
                        status  = true;
                        context = Common.DataRowToJson(dt1);

                        //===========log
                        C2.CtmJobEventLog lg = new C2.CtmJobEventLog();
                        lg.Platform_isMobile();
                        lg.Controller  = dt.Rows[i]["Name"].ToString();
                        lg.Remark      = dt.Rows[i]["Name"] + " Login";
                        lg.ActionLevel = "USER";
                        lg.log();
                        break;
                    }
                }
                if (!status)
                {
                    context = Common.StringToJson("Password error");
                }
            }
            else
            {
                sql = string.Format(@"select * from [user] where IsActive=0 and Tel=@Tel");
                dt  = ConnectSql_mb.GetDataTable(sql, list);
                if (dt.Rows.Count > 0)
                {
                    context = Common.StringToJson("Expire Account");
                }
                else
                {
                    context = Common.StringToJson("Account is not Exist");
                }
            }
        }
        Common.WriteJsonP(status, context);
    }