public bool ChangePass(string _sNewUN, string sUserPass, string sOldUN)
{
bool _bReturTF = false;
try
{
bool _bNewUNIsExist = false;
_bNewUNIsExist = ExecuteQueryFunctions.ExeSclr(_conn, "SELECT * FROM User_Table AS ut WHERE user_name='" + _sNewUN + "'");
if (_bNewUNIsExist)
{
throw new Exception("This user name already exist. Try another please.");
}
else
{
string QueryString = "UPDATE User_Table SET user_name='" + _sNewUN + "',user_pass='******',UpdateBy=" + EMSGlobal._nCurrentUserID + " WHERE user_name='" + sOldUN + "' AND user_id=" + EMSGlobal._nCurrentUserID;
ExecuteQueryFunctions.ExeNonQuery(_conn, QueryString);
_bReturTF = true;
}
}
catch (Exception e)
{
throw new ServiceException(e.Message, e);
}
return(_bReturTF);
}
public ID Save(UserFunctionality oUserFunctionality)
{
bool bIsExist = false;
try
{
if (oUserFunctionality.IsNew)
{
string QueryString = "SELECT COUNT(*) FROM Function_permission_Table WHERE UFID=" + oUserFunctionality.UFID + " AND user_id=" + oUserFunctionality.User_ID;
bIsExist = ExecuteQueryFunctions.ExeSclr(_conn, QueryString);
if (!bIsExist)
{
BusinessObject.Factory.SetID(oUserFunctionality, new ID(ExecuteQueryFunctions.GetNewID(_conn, "SELECT MAX(UFPID) FROM Function_permission_Table")));
string QueryString2 = "INSERT INTO Function_permission_Table (UFPID,UFID,user_id,DBUserID,DBSDT)"
+ "VALUES(" +
oUserFunctionality.ObjectID + "," +
oUserFunctionality.UFID + "," +
oUserFunctionality.User_ID + "," +
EMSGlobal._nCurrentUserID + ",'" +
DateTime.Now + "')";
ExecuteQueryFunctions.ExeNonQuery(_conn, QueryString2);
}
}
BusinessObject.Factory.SetObjectState(oUserFunctionality, ObjectState.Saved);
}
catch (Exception e)
{
throw new ServiceException(e.Message, e);
}
return(oUserFunctionality.ID);
}
public LoginInterface Get(LoginInterface oLoginInterface)
{
try
{
bool result = true;
string sUN = "";
string sUP = "";
//int nUserType = (int) oLoginInterface.user_type;
sUN = oLoginInterface.user_name;
//sUP = EMSGlobal.Encrypt(oLoginInterface.Password);
sUP = oLoginInterface.user_pass;
//SqlCommand cmd = new SqlCommand("SP_GetUserLoginInfo", _conn);
//cmd.CommandType = CommandType.StoredProcedure;
//cmd.Parameters.Add(new SqlParameter("@user_name", SqlDbType.VarChar)).Value = oLoginInterface.user_name;
//cmd.Parameters.Add(new SqlParameter("@user_pass", SqlDbType.VarChar)).Value = oLoginInterface.user_pass;
//cmd.Parameters.Add(new SqlParameter("@MacAddres", SqlDbType.VarChar)).Value = oLoginInterface.MacAddres;
//if (_conn.State == ConnectionState.Open) { }
//else { cmd.Connection.Open(); }
//IDataReader reader = cmd.ExecuteReader();
//NullHandler oReader = new NullHandler(reader);
//if (reader.Read())
//{
// oLoginInterface = CreateObject(oReader);
//}
//cmd.Dispose();
//cmd.Connection.Close();
//if (oLoginInterface.ID.ToInt32 > 0)
//{
// if (oLoginInterface.ObjectID == 1)
// { }
// else
// {
// if (oLoginInterface.MacAddres == string.Empty)
// {
// throw new Exception("Unauthorised Machin. Please contact with admin.");
// }
// if (oLoginInterface.IsAuthorise == false)
// {
// throw new Exception("Unauthorised Machin. Please contact with admin.");
// }
// if (oLoginInterface.user_lock == true)
// {
// throw new Exception("Account is Locked. Please contact with admin.");
// }
// if (oLoginInterface.user_status == EnumUserStatus.Suspend)
// {
// throw new Exception("Account has been suspended. Please contact with admin.");
// }
// if (oLoginInterface.user_islogon == true)
// {
// throw new Exception("Someone using this ID. Please Try another ID.");
// }
// string QueryString3 = "UPDATE User_Table SET user_islogon=1 WHERE user_id=" + oLoginInterface.ObjectID;
// ExecuteQueryFunctions.ExeSclr(_conn, QueryString3);
// }
//}
//else
//{
// throw new Exception("Incorrect User ID. Please type a correct User ID.");
//}
string QueryString = "SELECT COUNT(*) FROM User_Table WHERE user_name ='" + sUN + "' AND user_pass ='******'";
result = ExecuteQueryFunctions.ExeSclr(_conn, QueryString);
if (result)
{
string QueryString2 = "SELECT * FROM User_Table WHERE user_name ='" + sUN + "' AND user_pass ='******'";
IDataReader reader = ExecuteQueryFunctions.ExeReader(_conn, QueryString2);
NullHandler oReader = new NullHandler(reader);
if (reader.Read())
{
oLoginInterface = CreateObject(oReader);
}
reader.Close();
//string QueryString3 = "SELECT * FROM tbl_UserSecurity AS TUS WHERE TUS.user_id=" + oLoginInterface.ObjectID;
_conn.Close();
if (oLoginInterface.ObjectID == 1)
{
}
else
{
//if ((int)oLoginInterface.user_type != nUserType)
//{
// throw new Exception("Yor are not authenticated in this type of user. Please select your area.");
//}
if (oLoginInterface.user_lock == true)
{
throw new Exception("Account is Locked. Please contact with admin.");
}
if (oLoginInterface.user_status == EnumUserStatus.Suspend)
{
throw new Exception("Account has been suspended. Please contact with admin.");
}
if (oLoginInterface.user_islogon == true)
{
throw new Exception("Someone using this ID. Please Try another ID.");
}
//string QueryString3 = "UPDATE User_Table SET user_islogon=1 WHERE user_id=" + oLoginInterface.ObjectID;
//ExecuteQueryFunctions.ExeSclr(_conn, QueryString3);
}
//ExecuteQueryFunctions.ExeNonQuery(_conn, "EXEC dbo.SP_UpdateCelcInst");
}
else
{
throw new Exception("Incorrect User ID. Please type a correct User ID.");
}
}
catch (Exception e)
{
throw new ServiceException(e.Message);
}
return(oLoginInterface);
}
