protected void Page_Load(object sender, EventArgs e) { if (Session["CustomerId"] == null)//check login { Response.Redirect("Login.aspx"); } else { if (!IsPostBack)//load the customer information { int CustomerId = (int)Session["CustomerId"]; CustomerAccount ca = new CustomerAccount(); ca = CustomerAccountDB.GetAccountByID(CustomerId); txtUsername.Text = ca.CustUserName; txtFirstName.Text = ca.CustFirstName; txtLastName.Text = ca.CustLastName; txtAddress.Text = ca.CustAddress; txtCity.Text = ca.CustCity; ddlProvince.SelectedValue = ca.CustProv; txtPostal.Text = ca.CustPostal; txtCountry.Text = ca.CustCountry; txtHomePhone.Text = ca.CustHomePhone; txtBusPhone.Text = ca.CustBusPhone; txtEmail.Text = ca.CustEmail; } } }
protected void UpdateUser(object sender, EventArgs e) { if ((txtConfirmPassword.Text.Length == 0 && txtPassword.Text.Length != 0))//check password matching { lblComfirmPasswordError.ForeColor = System.Drawing.Color.Red; lblComfirmPasswordError.Text = "Passwords do not match"; txtPassword.Focus(); } else { lblComfirmPasswordError.Text = ""; int userId = 0; CustomerAccount ca = new CustomerAccount(); ca.CustomerId = (int)Session["CustomerId"]; ca.CustFirstName = txtFirstName.Text.Trim(); ca.CustLastName = txtLastName.Text.Trim(); ca.CustAddress = txtAddress.Text.Trim(); ca.CustCity = txtCity.Text.Trim(); ca.CustProv = ddlProvince.SelectedValue; ca.CustPostal = txtPostal.Text.Trim(); ca.CustCountry = txtCountry.Text.Trim(); ca.CustHomePhone = txtHomePhone.Text.Trim(); ca.CustBusPhone = txtBusPhone.Text.Trim(); ca.CustEmail = txtEmail.Text.Trim(); ca.CustUserName = txtUsername.Text.Trim(); if (txtPassword.Text.Length != 0) { string hashedPassword = Crypto.HashPassword(txtPassword.Text.Trim()); ca.CustPassword = hashedPassword;//get hashed Password value } else { string hashedPassword = Crypto.HashPassword(Session["CustPassword"].ToString()); ca.CustPassword = hashedPassword; } userId = CustomerAccountDB.UpdateAccount(ca);//save the updates into database string message = string.Empty; if (userId != 0) { message = "Information update successfully"; ClientScript.RegisterStartupScript(GetType(), "alert", "alert('" + message + "');", true); } else { message = "Error occured while updating."; ClientScript.RegisterStartupScript(GetType(), "alert", "alert('" + message + "');", true); } } }
protected void RegisterUser(object sender, EventArgs e) { int userId = 0;//variable for hold userId CustomerAccount ca = new CustomerAccount(); ca.CustFirstName = txtFirstName.Text.Trim(); //get firstname value from form ca.CustLastName = txtLastName.Text.Trim(); //get LastName value from form ca.CustAddress = txtAddress.Text.Trim(); //get Address value from form ca.CustCity = txtCity.Text.Trim(); //get City value from form ca.CustProv = ddlProvince.SelectedValue; //get Province value from form ca.CustPostal = txtPostal.Text.Trim(); //get Postal value from form ca.CustCountry = txtCountry.Text.Trim(); //get Country value from form ca.CustHomePhone = txtHomePhone.Text.Trim(); //get HomePhone value from form ca.CustBusPhone = txtBusPhone.Text.Trim(); //get BusPhone value from form ca.CustEmail = txtEmail.Text.Trim(); //get Email value from form ca.CustUserName = txtUsername.Text.Trim(); //get Username value from form string hashedPassword = Crypto.HashPassword(txtPassword.Text.Trim()); ca.CustPassword = hashedPassword;//get Password value from form userId = CustomerAccountDB.InsertNewAccount(ca); string message = string.Empty; if (userId == -1)//checks if the user id is wrong { message = "Username already exists.\\nPlease choose a different username."; ClientScript.RegisterStartupScript(GetType(), "alert", "alert('" + message + "');", true); } else { Session["CustomerId"] = userId; //save userid Session["CustFirstName"] = ca.CustFirstName; //save customer name Session["CustPassword"] = ca.CustPassword; //save customer password message = "Registration successful.\\nRedirecting to Home page.."; //display message Response.Write("<script language='javascript'>alert('" + message + "');</script>"); Server.Transfer("Home.aspx", true); } }
//verify the input username and password(with the hashedpassword) protected void Submit_Click(object sender, EventArgs e) { var verify = false; CustomerAccount Cust = new CustomerAccount(); Cust.CustUserName = txtUserName.Text; Cust = CustomerAccountDB.UserChecker(Cust); if (Cust.CustomerId != 0) { verify = Crypto.VerifyHashedPassword(Cust.CustPassword, txtPassword.Text); if (verify == true) { Session["CustomerId"] = Cust.CustomerId; Session["CustFirstName"] = Cust.CustFirstName; Session["CustPassword"] = txtPassword.Text; if (Session["prevUrl"] != null) { Response.Redirect(Session["prevUrl"].ToString()); } else { Response.Redirect("Home.aspx"); } } else { lblMessage.Text = "Username or Password is incorrect"; lblMessage.ForeColor = System.Drawing.Color.Red; } } else { lblMessage.Text = "Username or Password is incorrect"; lblMessage.ForeColor = System.Drawing.Color.Red; } }