public void AddEmail(User s, string email, string pwd)
{
UserEmail ue = new UserEmail();
ue.UserID = s.UserID;
ue.Email = email;
ue.Password = pwd;
}
public User FindById(int id)
{
User s = null;
string sql = string.Format("SELECT * FROM Users WHERE UserID = '{0}' ", id);
using(Connection cn = new Connection())
{
using (SqlCommand cmd = new SqlCommand())
{
try
{
cmd.Connection = cn.SqlConnection;
cmd.CommandText = sql;
int recordsAffected = cmd.ExecuteNonQuery();
SqlDataReader reader = cmd.ExecuteReader();
if (reader.HasRows)
{
while (reader.Read())
{
s = new User();
s.UserID = (int)reader["UserID"];
s.LoginName = reader["LoginName"].ToString();
s.EmailList = userEmailDAO.GetEmailList(s.UserID);
}
return s;
}
else
return s;
}
catch (Exception ex)
{
System.Diagnostics.Debug.WriteLine(ex.Message);
return s;
}
}
}
}
public User Login(string email, string pwd)
{
User user = null;
string sql = string.Format("SELECT * FROM UserEmails WHERE Email = '{0}' and Password = '******' ", email, pwd);
using (Connection cn = new Connection())
{
using (SqlCommand cmd = new SqlCommand())
{
try
{
cmd.Connection = cn.SqlConnection;
cmd.CommandText = sql;
int recordsAffected = cmd.ExecuteNonQuery();
SqlDataReader reader = cmd.ExecuteReader();
if (reader.HasRows)
{
while (reader.Read())
{
user = new User();
user.UserID = (int)reader["UserID"];
user = userDAO.FindById(user.UserID);
}
return user;
}
else
return user;
}
catch (Exception ex)
{
System.Diagnostics.Debug.WriteLine(ex.Message);
return user;
}
}
}
}
