public string api_login(JObject data) { dynamic ddata = data; string nickname, password; try { nickname = ddata.nick; password = ddata.pass; } catch { return("Invalid Data."); } if (HttpContext.Current.Session["user"] != null) { return("User already logged in."); } if (password == core.database.MySQL.SendQuerySingle("select pass from account_proto where nick = '" + nickname + "';")) { if (core.database.MySQL.SendQuerySingle("select active from account_proto where nick = '" + nickname + "';") == "0") { return("This account is not activated yet."); } try { MysqlResault res = core.database.MySQL.SendQuery("select *, DATE_FORMAT(NOW(),'%d-%m-%Y') AS date from account_proto where nick='" + nickname + "';"); core.system.user user = new core.system.userallinfo() { id = int.Parse(res[0]["id"]), nick = res[0]["nick"], pass = res[0]["pass"], email = res[0]["email"], firstname = res[0]["firstname"], lastname = res[0]["lastname"], icon = res[0]["icon"], sec_clearence = int.Parse(res[0]["sec_clearence"]), banned = res[0]["banned"], active = res[0]["active"], creation_date = DateTime.ParseExact(res[0]["date"], "dd-MM-yyyy", null), last_ip = res[0]["last_ip"] }; HttpContext.Current.Session["user"] = user; return("1"); } catch (Exception ex) { return(ex.Message); } } else { return("Wrong username or password."); } }
public string api_login(JObject data) { dynamic ddata = data; string nickname, password; try { nickname = ddata.nick; password = ddata.pass; } catch { return "Invalid Data."; } if (HttpContext.Current.Session["user"] != null) { return "User already logged in."; } if (password == core.database.MySQL.SendQuerySingle("select pass from account_proto where nick = '" + nickname + "';")) { if (core.database.MySQL.SendQuerySingle("select active from account_proto where nick = '" + nickname + "';") == "0") { return "This account is not activated yet."; } try { MysqlResault res = core.database.MySQL.SendQuery("select *, DATE_FORMAT(NOW(),'%d-%m-%Y') AS date from account_proto where nick='" + nickname + "';"); core.system.user user = new core.system.userallinfo() { id = int.Parse(res[0]["id"]), nick = res[0]["nick"], pass = res[0]["pass"], email = res[0]["email"], firstname = res[0]["firstname"], lastname = res[0]["lastname"], icon = res[0]["icon"], sec_clearence = int.Parse(res[0]["sec_clearence"]), banned = res[0]["banned"], active = res[0]["active"], creation_date = DateTime.ParseExact(res[0]["date"], "dd-MM-yyyy", null), last_ip = res[0]["last_ip"] }; HttpContext.Current.Session["user"] = user; return "1"; } catch (Exception ex) { return ex.Message; } } else { return "Wrong username or password."; } }