public bool Addstaff(staff s)
{
DatabaseInsertQuery newstaff = new DatabaseInsertQuery("staff");
String newSalt = SIPGradingHelper.generateSalt(10);
String password = SIPGradingHelper.getSHA512(newSalt + "" + s.passw);
newstaff.AddData("username", s.username);
newstaff.AddData("name", s.name);
newstaff.AddData("passw", password);
newstaff.AddData("salt", newSalt);
newstaff.AddData("permssn", s.permssn);
return(newstaff.RunQuery());
}
public bool Updatestaff(int staffid, staff s)
{
DatabaseUpdateQuery updatestaff = new DatabaseUpdateQuery("staff", "staffid= '" + staffid + "'");
if (s.passw != "")
{
String newSalt = SIPGradingHelper.generateSalt(10);
String password = SIPGradingHelper.getSHA512(newSalt + "" + s.passw);
updatestaff.AddData("passw", password);
updatestaff.AddData("salt", newSalt);
}
updatestaff.AddData("username", s.username);
updatestaff.AddData("name", s.name);
updatestaff.AddData("permssn", s.permssn);
return(updatestaff.RunQuery());
}
public ArrayList Getallstaff()
{
DatabaseRetriveQuery retrievestaff = new DatabaseRetriveQuery("staff");
SqlDataReader dr = retrievestaff.RunQuery();
ArrayList result = new ArrayList();
while (dr.Read())
{
staff s = new staff();
s.staffid = (int)dr["staffid"];
s.name = (string)dr["name"];
s.username = (string)dr["username"];
//s.passw = (string)dr["passw"];
//s.salt = (string)dr["salt"];
s.permssn = (string)dr["permssn"];
result.Add(new { staffid = s.staffid, name = s.name, username = s.username, permission = s.permssn });
}
return(result);
}
public ArrayList Getstaffbyusername(string username)
{
DatabaseRetriveQuery retrievestaff = new DatabaseRetriveQuery("staff");
retrievestaff.AddRestriction("username", "=", username.ToString());
SqlDataReader dr = retrievestaff.RunQuery();
ArrayList result = new ArrayList();
while (dr.Read())
{
staff s = new staff();
// s.staffid = (int)dr["staffid"];
s.username = (string)dr["username"];
s.passw = (string)dr["passw"];
s.salt = (string)dr["salt"];
s.permssn = (string)dr["permssn"];
result.Add(s);
}
return(result);
}
public object GetStaffByUsernamePublic(string username)
{
DatabaseRetriveQuery retrievestaff = new DatabaseRetriveQuery("staff");
retrievestaff.AddRestriction("username", "=", username.ToString());
SqlDataReader dr = retrievestaff.RunQuery();
staff s = new staff();
while (dr.Read())
{
s.staffid = (int)dr["staffid"];
s.username = (string)dr["username"];
s.passw = (string)dr["passw"];
s.name = (string)dr["name"];
s.salt = (string)dr["salt"];
s.permssn = (string)dr["permssn"];
}
object tmpStaff = new { staffid = s.staffid, name = s.name, username = s.username, permission = s.permssn };
return(tmpStaff);
}
