public User dalValidateUser(User user) { User validateUser = new User(); using (var command = new SqlCommand()) { command.Connection = Conexion.openDBConeccion(); command.CommandType = CommandType.StoredProcedure; command.CommandText = "spValidateUser"; command.Parameters.AddWithValue("@userName", user.UserName); command.Parameters.AddWithValue("@userPassword", user.UserPassword); SqlDataReader reader = command.ExecuteReader(); if (reader.Read()) { validateUser.UserName = reader.GetString(0); validateUser.UserRoles = reader.GetString(1); } else { validateUser = null; } Conexion.closeDBConnection(); return(validateUser); } }