/// <summary> /// /// </summary> /// <param name="userName">UserName</param> /// <param name="password">Password</param> /// <param name="userId">An out parameter which returns the UserId if login is successful</param> /// <param name="role">An out parameter which returns the RoleId if login is successful</param> /// <returns>true - If UserName and Password are valid otherwise false</returns> public bool IsValidUser(string userName, string password, out int userId, out Common.UserRole role) { bool isValidUser = false; password = (new DataSecurity()).Encrypt(password); DBParameterCollection paramCollection = new DBParameterCollection(); paramCollection.Add(new DBParameter("@userName", userName, DbType.String)); paramCollection.Add(new DBParameter("@password", password, DbType.String)); string sqlCommand = "SELECT * FROM UserDetails WHERE UserName=@userName AND Password=@password AND IsActive=1"; role = new Common.UserRole(); userId = 0; DataTable data = _dbHelper.ExecuteDataTable(sqlCommand, paramCollection); if (data.Rows.Count > 0) { isValidUser = true; role = Common.GetUserRole(DataFormat.GetInteger(data.Rows[0]["RoleId"])); userId = DataFormat.GetInteger(data.Rows[0]["UserId"]); } return(isValidUser); }
private void buttonLogin_Click(object sender, EventArgs e) { try { string userName = textBoxUsername.Text.Trim(); string password = textBoxPassword.Text.Trim(); errorProvider1.Clear(); labelMessage.Text = string.Empty; if (userName == string.Empty && password == string.Empty) { labelMessage.Text = MessageManager.GetMessage("1", false); errorProvider1.SetError(textBoxUsername, MessageManager.GetMessage("1", false)); return; } if (userName == string.Empty) { labelMessage.Text = MessageManager.GetMessage("1", false); errorProvider1.SetError(textBoxUsername, MessageManager.GetMessage("1", false)); return; } if (password == string.Empty) { labelMessage.Text = MessageManager.GetMessage("1", false); errorProvider1.SetError(textBoxPassword, MessageManager.GetMessage("1", false)); return; } int userId = 0; Common.UserRole role = new Common.UserRole(); bool validUser = userAuthentication.IsValidUser(userName, password, out userId, out role); Logger.WriteTrace("Login", "Username : "******"Success : " + validUser.ToString()); if (!validUser) { MessageManager.DisplayCustomMessage("Invalid user Id or password."); } else { if (checkBoxRemember.Checked) { SavePreference(true); } else { SavePreference(false); } SessionParameters.UserID = userId; SessionParameters.UserName = userName; SessionParameters.UserRole = role; (new Users()).UpdateLastLoginDate(SessionParameters.UserID); panelLogin.Hide(); panelOpen.Show(); InitScreenData(); } } catch (Exception ex) { throw ex; } }