public ClienteLogueado getClienteLogin(string username, string password)
{
ClienteLogueado cliente;
using (MySqlConnection sqlCon = GetConnection())
{
sqlCon.Open();
String query = "Select id_cliente,nombre_completo,username,password from cliente where username='******' and password='******';";
MySqlCommand sqlSelect = new MySqlCommand(query, sqlCon);
using (MySqlDataReader reader = sqlSelect.ExecuteReader())
{
cliente = null;
while (reader.Read())
{
cliente = new ClienteLogueado();
cliente.IdCliente = reader.GetInt32("id_cliente");
cliente.NombreCompleto = reader.GetString("nombre_completo");
cliente.Username = reader.GetString("username");
cliente.Password = reader.GetString("password");
}
sqlCon.Close();
}
}
return(cliente);
}
public ClienteLogueado getClienteLogueado()
{
ClienteLogueado clienteLogueado;
using (MySqlConnection sqlCon = GetConnection())
{
sqlCon.Open();
String query = "Select id_cliente,username,password,nombre_completo from cliente_logueado; ";
MySqlCommand sqlSelect = new MySqlCommand(query, sqlCon);
using (MySqlDataReader reader = sqlSelect.ExecuteReader())
{
clienteLogueado = null;
while (reader.Read())
{
clienteLogueado = new ClienteLogueado();
clienteLogueado.IdCliente = reader.GetInt32("id_cliente");
clienteLogueado.Username = reader.GetString("username");
clienteLogueado.Password = reader.GetString("password");
clienteLogueado.NombreCompleto = reader.GetString("nombre_completo");
}
sqlCon.Close();
}
}
return(clienteLogueado);
}
public ActionResult CerrarSesion()
{
ClienteLogueado clienteLogueado = clienteData.getClienteLogueado();
clienteData.suprimirClienteLogueado(clienteLogueado);
return(RedirectToAction("Index", "Home"));
}
public void suprimirClienteLogueado(ClienteLogueado clienteLogueado)
{
using (MySqlConnection sqlCon = GetConnection())
{
sqlCon.Open();
String query = "Delete from cliente_logueado where id_cliente=" + clienteLogueado.IdCliente;
MySqlCommand sqlSelect = new MySqlCommand(query, sqlCon);
sqlSelect.ExecuteNonQuery();
sqlCon.Close();
}
}
public ClienteLogueado insertarClienteLogueado(ClienteLogueado cliente)
{
using (MySqlConnection sqlCon = GetConnection())
{
sqlCon.Open();
String query = "Insert into cliente_logueado (id_cliente,nombre_completo,username,password) values (" +
cliente.IdCliente + ",'" + cliente.NombreCompleto + "','" + cliente.Username + "','" + cliente.Password + "');";
MySqlCommand sqlSelect = new MySqlCommand(query, sqlCon);
sqlSelect.ExecuteNonQuery();
sqlCon.Close();
ClienteLogueado clienteLogueado = new ClienteLogueado(cliente.IdCliente, cliente.Username, cliente.Password, cliente.NombreCompleto);
return(clienteLogueado);
}
}
public ActionResult Login(String username, String password)
{
try
{
ClienteLogueado cliente = clienteData.getClienteLogin(username, password);
if (cliente.Username == username && cliente.Password == password)
{
ClienteLogueado clienteLogueado = clienteData.insertarClienteLogueado(cliente);
TempData["clienteLogueado"] = clienteLogueado;
return(RedirectToAction("VistaClienteIndex", "VistasCliente"));
}
else
{
return(View());
}
}
catch
{
return(View());
}
}
// GET: VistasCliente
public ActionResult VistaClienteIndex()
{
ClienteLogueado clienteLogueado = (ClienteLogueado)clienteData.getClienteLogueado();
return(View(clienteLogueado));
}
