/*
* create new user profile
*/
public static ResultCodeType createNewProfile(paymentServer_dataBase DBHandler, UserProfile P)
{
if (DBHandler.Count("*", "userProfile WHERE email='" + P.email + "'") == 0)
{
string profile = "userProfile";
string items = "(userNo, username, email, password, userType, firstName, lastName, middleName, DOBDay, DOBMonth, DOBYear, " +
"occupation, SIN, address1, address2, city, province, country, postalCode, phoneNumber, receiveCommunication, " +
"bankCode, accountNum, accountPWD, acctBalance, transactionHistory, POSHWID, currentDK, nextDK, authenticationString)";
string values = "('" + P.userNo + "','" + P.username + "', '" + P.email + "', '" + P.password + "', '" + P.userType + "', '" + P.firstName + "', '" + P.lastName + "', '" +
P.middleName + "', '" + P.DOBDay + "', '" + P.DOBMonth + "', '" + P.DOBYear + "', '" + P.occupation + "', '" + P.SIN + "', '" + P.address1 + "', '" +
P.address2 + "', '" + P.city + "', '" + P.province + "', '" + P.country + "', '" + P.postalCode + "', '" + P.phoneNumber + "', '" + P.receiveCommunication + "', '" +
P.bankCode + "', '" + P.accountNum + "', '" + P.accountPWD + "', '" + P.acctBalance + "', '" + P.transactionHistory + "', '" + P.POSHWID + "', '" +
P.currentDK + "', '" + P.nextDK + "', '" + P.authenticationString + "')";
DBHandler.Insert(profile, items, values);
DBHandler.Insert("authenticationList", "(authenticationString)", "('"+P.authenticationString+"')");
return ResultCodeType.RESULT_CREATE_PROFILE_SUCCESS;
}
else
{
return ResultCodeType.ERROR_CREATE_PROFILE_ACCOUNT_EXISTS;
}
}
/*
* Get user profile
*/
public static GetProfileResultType getUserProfile(paymentServer_dataBase DBHandler, int userNo)
{
GetProfileResultType reply = new GetProfileResultType();
reply.status = ResultCodeType.ERROR_UNKNOWN;
List<string>[] list = DBHandler.Select("userProfile", "userNo", ""+userNo);
if (list.Length == 1)
{
if (list[0].Count() == (int)UserProfileEnum.NUM_PROFILE_DATA_ITEMS)
{
string String = "";
int Int = 1;
bool Bool = false;
double Double = 0.1;
object Profile = new UserProfile();
PropertyInfo[] properties = Profile.GetType().GetProperties();
int i;
for (i = 0; i < properties.Length; i++)
{
Console.WriteLine(properties[i].GetValue(Profile, null).ToString());
if (properties[i].GetType() == String.GetType())
{
properties[i].SetValue(Profile, (string)list[0][i], null);
}
else if (properties[i].GetType() == Double.GetType())
{
properties[i].SetValue(Profile, Convert.ToDouble(list[0][i]), null);
}
else if (properties[i].GetType() == Int.GetType())
{
properties[i].SetValue(Profile, Convert.ToInt32(list[0][i]), null);
}
else if (properties[i].GetType() == Bool.GetType())
{
properties[i].SetValue(Profile, Convert.ToBoolean(list[0][i]), null);
}
reply.status = ResultCodeType.UPDATE_USER_PROFILE_SUCCESS;
reply.profile = (UserProfile)Profile;
}
}
else
{
Console.WriteLine("ServerWorker::getUserProfile - Error: Did not receive extpected number of data items from server. Received: {}, Expected: {}", list[0].Count(), (int)UserProfileEnum.NUM_PROFILE_DATA_ITEMS);
}
}
else
{
Console.WriteLine("ServerWorker::getUserProfile - Error: Database query returned more than one record. Number Received: {}", list.Length);
}
return reply;
}
/*
* Authenticate user
*/
public static Boolean authenticateUser(paymentServer_dataBase DBHandler, string authenticationString)
{
int count = DBHandler.Count("*", "authenticationList WHERE authenticationString='"+authenticationString+"'");
/*//JT:HACK Start
if (count == 0)
{
DBHandler.Insert("authenticationList", "(authenticationString)", "('"+authenticationString+"')");
Console.WriteLine("XXXX JT:HACK - ServerWorker::authenticateUser - Insertion successfull");
Console.WriteLine("XXXX JT:HACK - ServerWorker::authenticateUser - User not authenticated but was added to database");
}
//JT:HACK End */
if (DBHandler.Count("*", "authenticationList WHERE authenticationString='" + authenticationString + "'") == 1)
{
Console.WriteLine("ServerWorker::authenticateUser - User authenticated with {0}", authenticationString);
DBHandler.Backup();
return true;
}
Console.WriteLine("ServerWorker::authenticateUser - Could not authenticate user. DB Query returned count of {0}", count);
return false;
}
public static void handleRequest(HttpProcessor p, StreamReader inputData, string method)
{
paymentServer_dataBase DBHandler = new paymentServer_dataBase();
JsonObjectCollection headers;
JsonObjectCollection messageType;
JsonObjectCollection user;
JsonObjectCollection merchant;
JsonObjectCollection customer;
JsonObjectCollection transactions;
//Define outgoing JSON message structures
JsonStringValue Accept_Encoding = new JsonStringValue("Accept-Encoding", "gzip,deflate,sdch");
JsonStringValue Cookie = new JsonStringValue("Cookie", "_gauges_unique_month=1; _gauges_unique_year=1; _gauges_unique=1");
JsonStringValue Accept_Language = new JsonStringValue("Accept-Language", "en-CA,en-GB,en-US;q=0.8,en;q=0.6");
JsonStringValue Accept = new JsonStringValue("Accept", "application/json, text/json");
JsonStringValue Host = new JsonStringValue("Host", "paymentserver.dynu.com");
JsonStringValue Referer = new JsonStringValue("Referer", "https://paymentserver.dynu.com");
JsonStringValue Connection = new JsonStringValue("Connection", "close");
JsonStringValue User_Agent = new JsonStringValue("User-Agent", "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.69 Safari/537.36");
headers = new JsonObjectCollection();
headers.Name = "headers";
headers.Add(Accept_Encoding);
headers.Add(Cookie);
headers.Add(Accept_Language);
headers.Add(Accept);
headers.Add(Host);
headers.Add(Referer);
headers.Add(Connection);
headers.Add(User_Agent);
JsonNumericValue code = new JsonNumericValue("code", -1);
JsonBooleanValue request = new JsonBooleanValue("request", false);
JsonBooleanValue response = new JsonBooleanValue("response", false);
JsonStringValue details = new JsonStringValue("details", "");
messageType = new JsonObjectCollection();
messageType.Name = "messageType";
messageType.Add(code);
messageType.Add(request);
messageType.Add(response);
messageType.Add(details);
JsonStringValue bankCode = new JsonStringValue("bankCode", "");
JsonStringValue accountNum = new JsonStringValue("accountNum", "");
JsonStringValue accountPWD = new JsonStringValue("accountPWD", "");
JsonNumericValue acctBalance = new JsonNumericValue("acctBalance", -1);
JsonObjectCollection account = new JsonObjectCollection();
account.Name = "account";
account.Add(bankCode);
account.Add(accountNum);
account.Add(accountPWD);
account.Add(acctBalance);
JsonNumericValue POSHWID = new JsonNumericValue("POSHWID", -1);
JsonStringValue currentDK = new JsonStringValue("currentDK", "");
JsonStringValue nextDK = new JsonStringValue("nextDK", "");
JsonObjectCollection hardwareInfo = new JsonObjectCollection();
hardwareInfo.Name = "hardwareInfo";
hardwareInfo.Add(POSHWID);
hardwareInfo.Add(currentDK);
hardwareInfo.Add(nextDK);
JsonNumericValue DOBDay = new JsonNumericValue("DOBDay", -1);
JsonNumericValue DOBMonth = new JsonNumericValue("DOBMonth", -1);
JsonNumericValue DOBYear = new JsonNumericValue("DOBYear", -1);
JsonObjectCollection dateOfBirth = new JsonObjectCollection();
dateOfBirth.Name = "dateOfBirth";
dateOfBirth.Add(DOBDay);
dateOfBirth.Add(DOBMonth);
dateOfBirth.Add(DOBYear);
JsonStringValue firstName = new JsonStringValue("firstName", "");
JsonStringValue middleName = new JsonStringValue("middleName", "");
JsonStringValue lastName = new JsonStringValue("lastName", "");
JsonStringValue occupation = new JsonStringValue("occupation", "");
JsonNumericValue SIN = new JsonNumericValue("SIN", -1);
JsonStringValue address1 = new JsonStringValue("address1", "");
JsonStringValue address2 = new JsonStringValue("address2", "");
JsonStringValue city = new JsonStringValue("city", "");
JsonStringValue province = new JsonStringValue("province", "");
JsonStringValue country = new JsonStringValue("country", "");
JsonStringValue postalCode = new JsonStringValue("postalCode", "");
JsonStringValue email = new JsonStringValue("email", "");
JsonNumericValue phoneNumber = new JsonNumericValue("phoneNumber", -1);
JsonObjectCollection personalInfo = new JsonObjectCollection();
personalInfo.Name = "personalInfo";
personalInfo.Add(firstName);
personalInfo.Add(middleName);
personalInfo.Add(lastName);
personalInfo.Add(email);
personalInfo.Add(dateOfBirth);
personalInfo.Add(occupation);
personalInfo.Add(SIN);
personalInfo.Add(address1);
personalInfo.Add(address2);
personalInfo.Add(city);
personalInfo.Add(province);
personalInfo.Add(country);
personalInfo.Add(postalCode);
personalInfo.Add(phoneNumber);
JsonStringValue username = new JsonStringValue("username", "");
JsonStringValue password = new JsonStringValue("password", "");
JsonObjectCollection userID = new JsonObjectCollection();
userID.Name = "userID";
userID.Add(username);
userID.Add(password);
JsonBooleanValue receiveCommunication = new JsonBooleanValue("receiveCommunication", false);
JsonStringValue userType = new JsonStringValue("userType", "");
JsonNumericValue userNo = new JsonNumericValue("userNo", -1);
JsonStringValue transactionHistory = new JsonStringValue("transactionHistory", "");
user = new JsonObjectCollection();
user.Name = "user";
user.Add(userNo);
user.Add(userType);
user.Add(transactionHistory);
user.Add(receiveCommunication);
user.Add(account);
user.Add(hardwareInfo);
user.Add(userID);
user.Add(personalInfo);
JsonNumericValue merchantID = new JsonNumericValue("merchantID", -1);
JsonStringValue merchantName = new JsonStringValue("merchantName", "");
merchant = new JsonObjectCollection();
merchant.Name = "merchant";
merchant.Add(merchantID);
merchant.Add(merchantName);
JsonStringValue custUsername = new JsonStringValue("custUsername", "");
JsonStringValue custPWD = new JsonStringValue("custPWD", "");
customer = new JsonObjectCollection();
customer.Name = "customer";
customer.Add(custUsername);
customer.Add(custPWD);
JsonNumericValue year = new JsonNumericValue("year", -1);
JsonNumericValue month = new JsonNumericValue("month", -1);
JsonNumericValue day = new JsonNumericValue("day", -1);
JsonObjectCollection transactionDate = new JsonObjectCollection();
transactionDate.Name = "transactionDate";
transactionDate.Add(year);
transactionDate.Add(month);
transactionDate.Add(day);
JsonNumericValue hour = new JsonNumericValue("hour", -1);
JsonNumericValue minute = new JsonNumericValue("minute", -1);
JsonNumericValue second = new JsonNumericValue("second", -1);
JsonObjectCollection transactionTime = new JsonObjectCollection();
transactionTime.Name = "transactionTime";
transactionTime.Add(hour);
transactionTime.Add(minute);
transactionTime.Add(second);
JsonStringValue merchantUsername = new JsonStringValue("merchantUsername", "");
JsonStringValue merchantPWD = new JsonStringValue("merchantPWD", "");
JsonObjectCollection merchantIdent = new JsonObjectCollection();
merchantIdent.Name = "merchantIdent";
merchantIdent.Add(merchantUsername);
merchantIdent.Add(merchantPWD);
JsonNumericValue transactionID = new JsonNumericValue("transactionID", -1);
JsonNumericValue amount = new JsonNumericValue("debitAmount", -1);
JsonBooleanValue isRefund = new JsonBooleanValue("isRefund", false);
JsonNumericValue balance = new JsonNumericValue("balance", -1);
JsonNumericValue receiptNo = new JsonNumericValue("receiptNo", -1);
transactions = new JsonObjectCollection();
transactions.Name = "transactions";
transactions.Add(transactionID);
transactions.Add(amount);
transactions.Add(isRefund);
transactions.Add(balance);
transactions.Add(receiptNo);
transactions.Add(transactionDate);
transactions.Add(transactionTime);
transactions.Add(merchantID);
//create JSON object
JsonObjectCollection defineResponse = new JsonObjectCollection();
if (method == "GET")
{
Console.WriteLine("GET request: {0}", p.http_url);
//build response content from already defined JSON Objects
defineResponse.Insert(0, headers);
defineResponse.Add(messageType);
defineResponse.Add(user);
defineResponse.Add(merchantIdent);
defineResponse.Add(customer);
defineResponse.Add(transactions);
}
/*
* Handle 'POST' message. Requests form the mobile application are handled here
*/
if (method == "POST")
{
Console.WriteLine("POST request: {0}", p.http_url);
//parse the input data
string data = inputData.ReadToEnd();
JObject received = JObject.Parse(data);
JObject msgType = (JObject)received.SelectToken("messageType");
int transactionCode = (int)msgType.SelectToken("code");
Console.WriteLine("Transaction code: {0}", transactionCode);
//Determine anad handle the received transaction code
switch (transactionCode)
{
/*
* handle user authentication request
*/
case ((int)clientIncomingCodeEnum.IN_CODE_LOGIN_REQ):
JObject cust = (JObject)received.SelectToken("customer");
string authString = "";
string uName = (string)cust.SelectToken("custUsername");
string PWD = (string)cust.SelectToken("custPWD");
authString += uName;
authString += PWD;
Console.WriteLine("custUsename: {0}", uName);
Console.WriteLine("custPWD: {0}", PWD);
//Call the ServerWorker function
if (paymentServer_requestWorker.authenticateUser(DBHandler, authString))
{
messageType = insert(messageType, code, new JsonNumericValue("code", (int)clientOutgoingCodeEnum.OUT_CODE_LOGIN_SUCCESS));
messageType = insert(messageType, response, new JsonBooleanValue("response", true));
messageType = insert(messageType, request, new JsonBooleanValue("request", false));
messageType = insert(messageType, details, new JsonStringValue("details", "Authentication Successful"));
}
else{
messageType = insert(messageType, code, new JsonNumericValue("code", (int)clientOutgoingCodeEnum.OUT_CODE_LOGIN_FAILURE));
messageType = insert(messageType, response, new JsonBooleanValue("response", true));
messageType = insert(messageType, request, new JsonBooleanValue("request", false));
messageType = insert(messageType, details, new JsonStringValue("details", "Invalid username and passowrd combination"));
}
//build response message content from already defined JSON Objects
defineResponse.Insert(0, headers);
defineResponse.Add(messageType);
break;
/*
* handle new user sign-up request
*/
case ((int)clientIncomingCodeEnum.IN_CODE_SIGN_UP_REQ):
UserProfile newProfile = new UserProfile();
//Retrieve encapsulated JSON objects from message
JObject newUser = (JObject)received.SelectToken("user");
JObject acct = (JObject)newUser.SelectToken("account");
JObject UID = (JObject)newUser.SelectToken("userID");
JObject persInfo = (JObject)newUser.SelectToken("personalInfo");
JObject DOB = (JObject)persInfo.SelectToken("dateOfBirth");
JObject HWInfo = (JObject)newUser.SelectToken("hardwareInfo");
//Populate the newProfile object with the information received from the client
newProfile.userType = (string)newUser.SelectToken("userType");
newProfile.receiveCommunication = Convert.ToInt16((bool)newUser.SelectToken("receiveCommunication"));
newProfile.bankCode = (string)acct.SelectToken("bankCode");
newProfile.accountNum = (string)acct.SelectToken("accountNum");
newProfile.accountPWD = (string)acct.SelectToken("accountPWD");
newProfile.username = (string)UID.SelectToken("username");
newProfile.password = (string)UID.SelectToken("password");
newProfile.firstName = (string)persInfo.SelectToken("firstName");
newProfile.middleName = (string)persInfo.SelectToken("middleName");
newProfile.lastName = (string)persInfo.SelectToken("lastName");
newProfile.DOBDay = (int)DOB.SelectToken("DOBDay");
newProfile.DOBMonth = (int)DOB.SelectToken("DOBMonth");
newProfile.DOBYear = (int)DOB.SelectToken("DOBYear");
newProfile.occupation = (string)persInfo.SelectToken("occupation");
newProfile.SIN = (int)persInfo.SelectToken("SIN");
newProfile.address1 = (string)persInfo.SelectToken("address1");
newProfile.address2 = (string)persInfo.SelectToken("address2");
newProfile.city = (string)persInfo.SelectToken("city");
newProfile.province = (string)persInfo.SelectToken("province");
newProfile.country = (string)persInfo.SelectToken("country");
newProfile.postalCode = (string)persInfo.SelectToken("postalCode");
newProfile.email = (string)persInfo.SelectToken("email");
newProfile.phoneNumber = (int)persInfo.SelectToken("phoneNumber");
newProfile.POSHWID = (int)HWInfo.SelectToken("POSHWID");
newProfile.authenticationString = "";
newProfile.authenticationString += newProfile.username;
newProfile.authenticationString += newProfile.password;
//pass the populated newProfile information to ServerWorker to try and create a new profile
//and build response message to client based on the return code receiveed from ServerWorker
if (paymentServer_requestWorker.createNewProfile(DBHandler, newProfile) == ResultCodeType.RESULT_CREATE_PROFILE_SUCCESS)
{
messageType = insert(messageType, code, new JsonNumericValue("code", (int)clientOutgoingCodeEnum.OUT_CODE_SIGN_UP_SUCCESS));
messageType = insert(messageType, response, new JsonBooleanValue("response", true));
messageType = insert(messageType, request, new JsonBooleanValue("request", false));
messageType = insert(messageType, details, new JsonStringValue("details", "User account created"));
}
else
{
messageType = insert(messageType, code, new JsonNumericValue("code", (int)clientOutgoingCodeEnum.OUT_CODE_SIGN_UP_FAILURE));
messageType = insert(messageType, response, new JsonBooleanValue("response", true));
messageType = insert(messageType, request, new JsonBooleanValue("request", false));
messageType = insert(messageType, details, new JsonStringValue("details", "Could not create profile. The email provided is already registered"));
}
//build response message content from already defined JSON Objects
defineResponse.Insert(0, headers);
defineResponse.Add(messageType);
break;
/*
* handle get user profile request
*/
case ((int)clientIncomingCodeEnum.IN_CODE_GET_USER_PROFILE):
//Retrieve encapsulated JSON objects from message
JObject requester = (JObject)received.SelectToken("user");
int userNum = (int)requester.SelectToken("userNo");
GetProfileResultType UserProf = paymentServer_requestWorker.getUserProfile(DBHandler, userNum);
if (UserProf.status == ResultCodeType.UPDATE_USER_PROFILE_SUCCESS)
{
//populate messageType fields
messageType = insert(messageType, code, new JsonNumericValue("code", (int)clientOutgoingCodeEnum.OUT_CODE_SEND_USER_PROFILE_SUCCESS));
messageType = insert(messageType, response, new JsonBooleanValue("response", true));
messageType = insert(messageType, request, new JsonBooleanValue("request", false));
//populate User fields
user = insert(user, userNo, new JsonNumericValue("userNo", (int)UserProf.profile.userNo));
user = insert(user, userType, new JsonStringValue("userType", (string)UserProf.profile.userType));
user = insert(user, transactionHistory, new JsonStringValue("transactionHistory", (string)UserProf.profile.transactionHistory));
user = insert(user, receiveCommunication, new JsonBooleanValue("receiveCommunication", Convert.ToBoolean(UserProf.profile.receiveCommunication)));
account = insert(account, bankCode, new JsonStringValue("bankCode", (string)UserProf.profile.bankCode));
account = insert(account, accountNum, new JsonStringValue("accountNum", (string)UserProf.profile.accountNum));
account = insert(account, accountPWD, new JsonStringValue("accountPWD", (string)UserProf.profile.accountPWD));
account = insert(account, acctBalance, new JsonNumericValue("acctBalance", (int)UserProf.profile.acctBalance));
user = insert(user, account, account);
hardwareInfo = insert(hardwareInfo, POSHWID, new JsonNumericValue("POSHWID", (int)UserProf.profile.POSHWID));
hardwareInfo = insert(hardwareInfo, currentDK, new JsonStringValue("currentDK", (string)UserProf.profile.currentDK));
hardwareInfo = insert(hardwareInfo, nextDK, new JsonStringValue("nextDK", (string)UserProf.profile.nextDK));
user = insert(user, hardwareInfo, hardwareInfo);
userID = insert(userID, username, new JsonStringValue("username", (string)UserProf.profile.username));
userID = insert(userID, password, new JsonStringValue("password", (string)UserProf.profile.password));
user = insert(user, userID, userID);
personalInfo = insert(personalInfo, firstName, new JsonStringValue("firstName", (string)UserProf.profile.firstName));
personalInfo = insert(personalInfo, lastName, new JsonStringValue("lastName", (string)UserProf.profile.lastName));
personalInfo = insert(personalInfo, middleName, new JsonStringValue("middleName", (string)UserProf.profile.middleName));
personalInfo = insert(personalInfo, email, new JsonStringValue("email", (string)UserProf.profile.email));
personalInfo = insert(personalInfo, occupation, new JsonStringValue("occupation", (string)UserProf.profile.occupation));
personalInfo = insert(personalInfo, SIN, new JsonNumericValue("SIN", (int)UserProf.profile.SIN));
personalInfo = insert(personalInfo, address1, new JsonStringValue("address1", (string)UserProf.profile.address1));
personalInfo = insert(personalInfo, address2, new JsonStringValue("address2", (string)UserProf.profile.address2));
personalInfo = insert(personalInfo, city, new JsonStringValue("email", (string)UserProf.profile.city));
personalInfo = insert(personalInfo, province, new JsonStringValue("province", (string)UserProf.profile.province));
personalInfo = insert(personalInfo, country, new JsonStringValue("country", (string)UserProf.profile.country));
personalInfo = insert(personalInfo, postalCode, new JsonStringValue("postalCode", (string)UserProf.profile.postalCode));
personalInfo = insert(personalInfo, phoneNumber, new JsonNumericValue("phoneNumber", (int)UserProf.profile.phoneNumber));
dateOfBirth = insert(dateOfBirth, DOBDay, new JsonNumericValue("DOBDay", (int)UserProf.profile.DOBDay));
dateOfBirth = insert(dateOfBirth, DOBMonth, new JsonNumericValue("DOBMonthr", (int)UserProf.profile.DOBMonth));
dateOfBirth = insert(dateOfBirth, DOBYear, new JsonNumericValue("DOBYear", (int)UserProf.profile.DOBYear));
personalInfo = insert(personalInfo, dateOfBirth, dateOfBirth);
user = insert(user, personalInfo, personalInfo);
}
else
{
messageType = insert(messageType, code, new JsonNumericValue("code", (int)clientOutgoingCodeEnum.OUT_CODE_SEND_USER_PROFILE_FAILURE));
messageType = insert(messageType, response, new JsonBooleanValue("response", true));
messageType = insert(messageType, request, new JsonBooleanValue("request", false));
messageType = insert(messageType, details, new JsonStringValue("details", "Server error - Could not get profile data"));
}
//build response message content from already defined JSON Objects
defineResponse.Insert(0, headers);
defineResponse.Add(messageType);
defineResponse.Add(user);
break;
case ((int)clientIncomingCodeEnum.IN_CODE_PROCESS_PAYMENT_REQ):
break;
}
}
//finalize outgoing JSON message
JsonObjectCollection completeResponse = new JsonObjectCollection();
JsonObjectCollection packagedResponse = new JsonObjectCollection();
completeResponse.Add(defineResponse);
//Write message to client
Console.WriteLine("Response to Client: \n{0}", completeResponse.ToString());
byte[] message = JsonStringToByteArray(completeResponse.ToString());
p.sslStream.Write(message);
}
public static ResultCodeType processPaymentRequest(paymentServer_dataBase DBHandler, transaction transDetails)
{
ResultCodeType result = new ResultCodeType();
return result;
}
