private void SetPassword()
{
Core.WebServer.PleaseTakes.Session.CurrentInstance.Account.Password = this._new;
if (Core.WebServer.PleaseTakes.Session.CurrentInstance.Account.IsTeachingAccount)
{
Helpers.Database.ParameterBuilder paramBuilder = new Helpers.Database.ParameterBuilder();
UserManagement.Accounts.TeachingAccount account = (UserManagement.Accounts.TeachingAccount)Core.WebServer.PleaseTakes.Session.CurrentInstance.Account;
paramBuilder.AddParameter(SqlDbType.Int, "@StaffId", account.StaffId);
paramBuilder.AddParameter(SqlDbType.VarChar, "@NewPassword", account.Password);
using (TransactionScope transactionScope = new TransactionScope()) {
Helpers.Database.Provider.ExecuteNonQuery("/Sql/Specific/Account/password.sql", paramBuilder.Parameters);
transactionScope.Complete();
}
}
Core.WebServer.PleaseTakes.Redirect("/account/passwordsuccess/#Password");
}
private static bool UsernameValid(bool inDatabase)
{
if (inDatabase)
{
Helpers.Database.ParameterBuilder paramBuilder = new Helpers.Database.ParameterBuilder();
paramBuilder.AddParameter(SqlDbType.VarChar, "@Username", Action.Username);
using (SqlDataReader dataReader = Helpers.Database.Provider.ExecuteReader("/Sql/Specific/Login/usernamecheck.sql", paramBuilder.Parameters)) {
if (dataReader.Read())
{
return(true);
}
else
{
return(false);
}
}
}
else
{
return(WebServer.PleaseTakes.Session.CurrentInstance.School.Settings.NonTeachingAccounts.Exists(Action.Username));
}
}
private static void Checks(bool inDatabase)
{
if (inDatabase)
{
Helpers.Database.ParameterBuilder paramBuilder = new Helpers.Database.ParameterBuilder();
paramBuilder.AddParameter(SqlDbType.VarChar, "@Username", Action.Username);
paramBuilder.AddParameter(SqlDbType.VarChar, "@Password", Action.Password);
using (SqlDataReader dataReader = Helpers.Database.Provider.ExecuteReader("/Sql/Specific/Login/retrieve.sql", paramBuilder.Parameters)) {
int timetableId;
if (dataReader.Read())
{
if (!int.TryParse(dataReader["TimetableId"].ToString(), out timetableId))
{
Redirects.MissingTimetableId();
}
else
if ((bool)dataReader["IsActive"])
{
// Temporary
if ((bool)dataReader["IsAdmin"])
{
UserManagement.Accounts.TeachingAccount account = new UserManagement.Accounts.TeachingAccount(
dataReader["Username"] as string,
dataReader["Password"] as string,
dataReader["Title"] as string,
dataReader["Forename"] as string,
dataReader["Surname"] as string,
dataReader["HoldingName"] as string,
(int)dataReader["StaffId"],
(int)dataReader["TimetableId"],
(bool)dataReader["IsActive"],
(bool)dataReader["IsAdmin"]);
Action.LoginUser(account);
}
// Temporary
else
{
Action.Redirects.NonAdmin();
}
}
else
{
Action.Redirects.Disabled();
}
}
else
{
Action.Redirects.Invalid();
}
}
}
else
{
UserManagement.Accounts.Account account = WebServer.PleaseTakes.Session.CurrentInstance.School.Settings.NonTeachingAccounts[Action.Username];
if (account.Password.Equals(Action.Password))
{
if (account.IsActive)
{
Action.LoginUser(account);
}
else
{
Action.Redirects.Disabled();
}
}
else
{
Action.Redirects.Invalid();
}
}
}
