public bool CreateNewStudent(Students student, SLPUser slp, TeacherUser teacher)
{
bool result = false;
var cmdText1 = @"sp_insert_student";
var cmdText2 = @"sp_insert_new_iep";
int newStudentId;
try
{
using (TransactionScope scope = new TransactionScope())
{
using (SqlConnection conn = DBConnection.GetConnection())
{
conn.Open();
SqlCommand cmd1 = new SqlCommand(cmdText1, conn);
cmd1.CommandType = CommandType.StoredProcedure;
cmd1.Parameters.AddWithValue("@FirstName", student.FirstName);
cmd1.Parameters.AddWithValue("@LastName", student.LastName);
cmd1.Parameters.AddWithValue("@Birthday", student.Birthday);
cmd1.Parameters.AddWithValue("@TeacherID", student.TeacherID);
cmd1.Parameters.AddWithValue("@Grade", student.Grade);
cmd1.Parameters.AddWithValue("@Address", student.Address);
cmd1.Parameters.AddWithValue("@City", student.City);
cmd1.Parameters.AddWithValue("@State", student.State);
cmd1.Parameters.AddWithValue("@ZipCode", student.ZipCode);
cmd1.Parameters.AddWithValue("@NCESID", student.NCESId);
var temp = cmd1.ExecuteScalar();
newStudentId = Convert.ToInt32(temp);
SqlCommand cmd2 = new SqlCommand(cmdText2, conn);
cmd2.CommandType = CommandType.StoredProcedure;
cmd2.Parameters.Add("@IEPDate", SqlDbType.Date);
cmd2.Parameters.AddWithValue("@StudentID", newStudentId);
cmd2.Parameters.AddWithValue("@SLPID", slp.SLPID);
cmd2.Parameters.AddWithValue("@IEPType", student.IEPType);
cmd2.Parameters["@IEPDate"].Value = student.IEPdate;
cmd2.Parameters.AddWithValue("@IEPLeaderFirstName", student.IEPLeaderFirstName);
cmd2.Parameters.AddWithValue("@IEPLeaderLastName", student.IEPLeaderLastName);
cmd2.Parameters.AddWithValue("@GoalType", student.GoalType);
cmd2.Parameters.AddWithValue("@IEPNotes", student.IEPNotes);
cmd2.Parameters.AddWithValue("@Active", student.Active);
int returnValue = cmd2.ExecuteNonQuery();
}
scope.Complete();
}
}
catch (Exception ex)
{
throw ex;
}
return(result);
}
public ActionResult Create(Students student, SLPUser slp, TeacherUser teacher)
{
if (ModelState.IsValid)
{
try
{
// TODO: Add insert logic here
if (_studentManager.CreateNewStudent(student, slp, teacher))
{
return(RedirectToAction("Index"));
}
}
catch
{
ViewBag.States = _states;
ViewBag.SchoolName = _schoolName;
ViewBag.Grade = _grade;
ViewBag.IEPType = _iepType;
ViewBag.GoalType = _goalType;
return(View());
}
}
ViewBag.States = _states;
ViewBag.SchoolName = _schoolName;
ViewBag.Grade = _grade;
ViewBag.IEPType = _iepType;
ViewBag.GoalType = _goalType;
return(View(student));
}
public SLPUser AuthenticateSLP(string username, string password)
{
SLPUser slpUser = null;
password = HashSHA256(password);
try
{
if (1 == _userAccess.VerifyUsernamePasswordSLP(username, password))
{
slpUser = _userAccess.GetSLPByEmail(username);
if (password == HashSHA256("newuser"))
{
slpUser.SLPUsers.Add("New User");
}
}
else
{
throw new ApplicationException("The SLP you requested was not found.");
}
}
catch (Exception ex)
{
throw new ApplicationException("User not validated.", ex);
}
return(slpUser);
}
private void resetWindow()
{
_slpUser = null;
_managerUser = null;
_teacherUser = null;
_currentStudents = null;
btnLogin.Content = "Log in";
txtUsername.Visibility = Visibility.Visible;
pwdPassword.Visibility = Visibility.Visible;
cbxUserType.Visibility = Visibility.Visible;
txtUsername.Text = "Email Address";
pwdPassword.Password = "******";
Message.Content = "Welcome";
Alert.Content = "You must log in to view students";
cbxUserType.SelectedItem = "Show All";
txtUsername.Focus();
txtUsername.SelectAll();
tabStudents.Visibility = Visibility.Collapsed;
tabMyStudents.Visibility = Visibility.Collapsed;
tabManageStudents.Visibility = Visibility.Collapsed;
dgStudents.Visibility = Visibility.Collapsed;
dgManageStudents.Visibility = Visibility.Collapsed;
dgTeachersStudents.Visibility = Visibility.Collapsed;
hideTabs();
btnFilter.Visibility = Visibility.Hidden;
cbxSchool.Visibility = Visibility.Hidden;
lblSchoolName.Visibility = Visibility.Hidden;
}
public SLPUser GetSLPByEmail(string email)
{
SLPUser slpUser = null;
var conn = DBConnection.GetConnection();
string cmdText = "sp_get_slp_username_by_email";
var cmd = new SqlCommand(cmdText, conn);
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.Add("@Email", SqlDbType.NVarChar, 250);
cmd.Parameters["@Email"].Value = email;
try
{
string firstName = null;
string lastName = null;
string slpID = null;
string managerId = null;
List <string> users = new List <string>();
conn.Open();
SqlDataReader reader1 = cmd.ExecuteReader();
if (reader1.HasRows)
{
while (reader1.Read())
{
slpID = reader1.GetString(0);
firstName = reader1.GetString(1);
lastName = reader1.GetString(2);
managerId = reader1.GetString(3);
}
}
else
{
throw new ApplicationException("This SLP was not not found.");
}
reader1.Close();
slpUser = new SLPUser(slpID, firstName, lastName, managerId, users);
}
catch (Exception)
{
throw;
}
finally
{
conn.Close();
}
return(slpUser);
}
public frmUpdatePassword(SLPUser slpUser, userManager userManager, TeacherUser teacherUser, ManagerUser managerUser, bool newUser = false)
{
this._managerUser = managerUser;
this._userManager = userManager;
this._teacherUser = teacherUser;
this._slpUser = slpUser;
this._newUser = newUser;
InitializeComponent();
}
public int CreateNewStudentIEP(Students student, SLPUser slp)
{
int result = 0;
_students.Add(student);
if (_students.Contains(student))
{
result = 1;
}
return(result);
}
public bool CreateNewStudent(Students student, SLPUser slp, TeacherUser teacher)
{
bool result = false;
_students.Add(student);
if (_students.Contains(student))
{
result = true;
}
return(result);
}
public SLPUser GetSLPByEmail(string email)
{
SLPUser slp = new SLPUser();
slp = _slp.Find(x => x.Email == email);
if (slp == null)
{
throw new ArgumentException("SLP not found.");
}
return(slp);
}
public SLPUser RetrieveSLPByEmail(string email)
{
SLPUser slp = null;
var conn = DBConnection.GetConnection();
string cmdText = @"sp_retrieve_all_slp_emails";
var cmd = new SqlCommand(cmdText, conn);
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.AddWithValue("Email", email);
try
{
string slpID = null;
string firstName = null;
string lastName = null;
conn.Open();
SqlDataReader reader = cmd.ExecuteReader();
if (reader.HasRows)
{
while (reader.Read())
{
slpID = reader.GetString(0);
firstName = reader.GetString(1);
lastName = reader.GetString(2);
}
}
else
{
throw new ApplicationException("User not found.");
}
slp = new SLPUser(slpID, firstName, lastName);
}
catch (Exception)
{
throw;
}
finally
{
conn.Close();
}
return(slp);
}
public void RefreshSLPUsers(SLPUser slpUser, string email)
{
try
{
List <string> emails = new List <string>();
var slpUsers = _userAccess.GetSLPByEmail(email);
foreach (var slp in emails)
{
slpUsers.SLPUsers.Add(slp);
}
}
catch (Exception)
{
throw;
}
}
/// <summary>
/// Creating a new student. In order for a student to be created, they also need some of the information
/// from the SLP and Teacher to be passed as well since every student is associated with a teacher and an SLP
/// </summary>
/// <param name="newStudent">The student information that is needed</param>
/// <param name="slp">Every student is associated with an SLP</param>
/// <param name="teacher">Every student is associated with a teacher</param>
/// <returns></returns>
public bool CreateNewStudent(Students newStudent, SLPUser slp, TeacherUser teacher)
{
bool result = false;
try
{
if (!isValid(newStudent))
{
throw new ArgumentException("Invalid data for new student.");
}
result = _studentAccessor.CreateNewStudent(newStudent, slp, teacher);
}
catch (Exception)
{
throw;
}
return(result);
}
public int CreateNewStudentIEP(Students student, SLPUser slp)
{
int result = 0;
var conn = DBConnection.GetConnection();
string cmdText = @"sp_insert_new_iep";
var cmd = new SqlCommand(cmdText, conn);
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.Add("@IEPDate", SqlDbType.Date);
//cmd.Parameters.Add("@StudentID", SqlDbType.Int);
//cmd.Parameters.["@StudentID"].Value = student.StudentId;
cmd.Parameters.AddWithValue("@StudentID", student.StudentId);
cmd.Parameters.AddWithValue("@SLPID", slp.SLPID);
cmd.Parameters.AddWithValue("@IEPType", student.IEPType);
//cmd.Parameters.AddWithValue("@IEPDate", student.IEPdate);
cmd.Parameters["@IEPDate"].Value = student.IEPdate;
cmd.Parameters.AddWithValue("@IEPLeaderFirstName", student.IEPLeaderFirstName);
cmd.Parameters.AddWithValue("@IEPLeaderLastName", student.IEPLeaderLastName);
cmd.Parameters.AddWithValue("@IEPNotes", student.IEPNotes);
try
{
conn.Open();
result = cmd.ExecuteNonQuery();
}
catch (Exception)
{
throw;
}
finally
{
conn.Close();
}
return(result);
}
public List <SLPUser> RetrieveSLPs()
{
List <SLPUser> slps = new List <SLPUser>();
var conn = DBConnection.GetConnection();
string cmdText = @"sp_retrieve_slp_info";
var cmd = new SqlCommand(cmdText, conn);
cmd.CommandType = CommandType.StoredProcedure;
try
{
conn.Open();
var reader = cmd.ExecuteReader();
if (reader.HasRows)
{
while (reader.Read())
{
SLPUser slp = new SLPUser();
slp.SLPID = reader.GetString(0);
slp.FirstName = reader.GetString(1);
slp.LastName = reader.GetString(2);
slp.Email = reader.GetString(3);
slps.Add(slp);
}
}
}
catch (Exception)
{
throw;
}
finally
{
conn.Close();
}
return(slps);
}
public string SLPId(SLPUser user)
{
throw new NotImplementedException();
}
private void btnLogin_Click(object sender, RoutedEventArgs e)
{
// The button to login for the various users.
// This checks to see if any of the users are null
// If they are not null, then the window is reset
if (this._slpUser != null)
{
resetWindow();
return;
}
if (this._teacherUser != null)
{
resetWindow();
return;
}
if (this._managerUser != null)
{
resetWindow();
return;
}
// Checking to see if the users are new users when they first log in
try
{
string username = txtUsername.Text;
string password = pwdPassword.Password;
bool isNewUser = pwdPassword.Password == "newuser";
if (username.Length < 7 || username.Length > 255)
{
MessageBox.Show("Your Username must the right length of characters. " +
"Please try again.");
txtUsername.Focus();
return;
}
if (password.Length < 6)
{
MessageBox.Show("Your password must be longer than 6 characters." +
"Please try again.");
pwdPassword.Focus();
return;
}
if (cbxSLPUser.IsSelected == true)
{
_slpUser = _userManager.AuthenticateSLP(username, password);
}
else if (cbxTeacherUser.IsSelected == true)
{
_teacherUser = _userManager.AuthenticateTeacher(username, password);
}
else if (cbxManagerUser.IsSelected == true)
{
_managerUser = _userManager.AuthenticateManager(username, password);
}
else if (cbxUserSelect.IsSelected == true)
{
MessageBox.Show("You must select a user. Please select one and try logging in again.");
}
if (_slpUser != null)
{
MessageBox.Show("Welcome back, " + _slpUser.FirstName + ", authentication successful.");
if (isNewUser)
{
this.Alert.Content = _slpUser.FirstName + ", this is your first login. You must change your password.";
var frmPassword = new frmUpdatePassword(_slpUser, _userManager, _teacherUser, _managerUser, true);
if (frmPassword.ShowDialog() == true)
{
MessageBox.Show("Password successful.");
}
}
setupWindow();
return;
}
else if (_teacherUser != null)
{
if (_teacherUser != null)
{
MessageBox.Show("Welcome back, " + _teacherUser.FirstName + ", authentication successful.");
if (isNewUser)
{
this.Alert.Content = _teacherUser.FirstName + ", this is your first login. You must change your password.";
var frmPassword = new frmUpdatePassword(_slpUser, _userManager, _teacherUser, _managerUser, true);
if (frmPassword.ShowDialog() == true)
{
MessageBox.Show("Password successful.");
}
}
setupWindow();
return;
}
}
else if (_managerUser != null)
{
if (_managerUser != null)
{
MessageBox.Show("Welcome back, " + _managerUser.FirstName + ", authentication successful.");
if (isNewUser)
{
this.Alert.Content = _managerUser.FirstName + ", this is your first login. You must change your password.";
var frmPassword = new frmUpdatePassword(_slpUser, _userManager, _teacherUser, _managerUser, true);
if (frmPassword.ShowDialog() == true)
{
MessageBox.Show("Password successful.");
}
}
setupWindow();
return;
}
}
else
{
MessageBox.Show("Your username or password were incorrect. Please try again.");
return;
}
}
catch (Exception ex)
{
MessageBox.Show(ex.Message + "\n" + ex.InnerException.Message);
}
}
