/// <summary> /// Builds the DbCommand to delete a dependency record for the given taskQueueItem from the /// TaskDependencies table. /// </summary> /// <param name="daMgr">DataAccessMgr object</param> /// <param name="taskQueueItem">Unique Identifier of the TaskDependencies record to delete</param> /// <returns>DbCommand Object with given Parameter values</returns> public static DbCommand GetDeleteDependencyTaskCmd(DataAccessMgr daMgr, DataRow taskQueueItem) { if (taskQueueItem == null || !taskQueueItem.Table.Columns.Contains(TaskProcessing.Constants.TaskQueueCode)) { throw new ExceptionEvent(enumExceptionEventCodes.NullOrEmptyParameter , "DataRow (taskQueueItem) containing TaskProcessingQueue data was empty"); } DbTableDmlMgr dmlMgr = daMgr.DbCatalogGetTableDmlMgr(DataAccess.Constants.SCHEMA_CORE , TaskProcessing.Constants.TaskDependencies); dmlMgr.SetWhereCondition(w => w.Column(TaskProcessing.Constants.TaskQueueCode) == w.Parameter(TaskProcessing.Constants.TaskQueueCode)); DbCommand dbCmd = daMgr.BuildDeleteDbCommand(dmlMgr); dbCmd.Parameters[daMgr.BuildParamName(TaskProcessing.Constants.TaskQueueCode)].Value = Convert.ToInt32(taskQueueItem[TaskProcessing.Constants.TaskQueueCode]); return(dbCmd); }
/// <summary> /// Sets or resets an account restriction for the given user identifier /// </summary> /// <param name="daMgr">DataAccessMgr object</param> /// <param name="userId">Unique user identifier</param> /// <param name="removeRestriction">Indicates whether to set or reset the restriction</param> static void Restriction(DataAccessMgr daMgr, string userId, bool removeRestriction) { DbTableDmlMgr dmlUpdate = daMgr.DbCatalogGetTableDmlMgr(DataAccess.Constants.SCHEMA_CORE , Constants.UserMaster); dmlUpdate.AddColumn(Constants.SignonRestricted , daMgr.BuildParamName(Constants.SignonRestricted)); dmlUpdate.SetWhereCondition((j) => j.Column(Constants.UserId) == j.Parameter(dmlUpdate.MainTable.SchemaName , dmlUpdate.MainTable.TableName , Constants.UserId , daMgr.BuildParamName(Constants.UserId))); DbCommand cmdUpdate = daMgr.BuildUpdateDbCommand(dmlUpdate); cmdUpdate.Parameters[daMgr.BuildParamName(Constants.UserId)].Value = userId; cmdUpdate.Parameters[daMgr.BuildParamName(Constants.SignonRestricted)].Value = removeRestriction ? 0 : 1; daMgr.ExecuteNonQuery(cmdUpdate, null, null); }
DbCommand GetDeleteSessionRecordCmd() { DbTableStructure tblAppSesssion = _daMgr.DbCatalogGetTable(DataAccess.Constants.SCHEMA_CORE , Constants.SignonControl); DbTableDmlMgr dmlDeleteMgr = _daMgr.DbCatalogGetTableDmlMgr(DataAccess.Constants.SCHEMA_CORE , Constants.AppSessions , Constants.AppId , Constants.StartDateTime); dmlDeleteMgr.SetWhereCondition((j) => j.Column(Constants.AppCode) == j.Parameter(dmlDeleteMgr.MainTable.SchemaName , dmlDeleteMgr.MainTable.TableName , Constants.AppCode , _daMgr.BuildParamName(Constants.AppCode)) && j.Column(Constants.MultipleSessionCode) == j.Parameter(dmlDeleteMgr.MainTable.SchemaName , dmlDeleteMgr.MainTable.TableName , Constants.MultipleSessionCode , _daMgr.BuildParamName(Constants.MultipleSessionCode))); return(_daMgr.BuildDeleteDbCommand(dmlDeleteMgr)); }
/// <summary> /// Implements the user signon operation /// </summary> /// <param name="daMgr">DataAccessMgr object</param> /// <param name="signonControl">SignonControl data structure</param> /// <param name="userId">Unique user identifier</param> /// <param name="userPassword">User's password (NULL for first time initialization)</param> /// <param name="userEnv">Meta data about user's environment</param> /// <param name="allowMultipleSessions">Indicates whether to allow multiple session for an account that was not setup for multiple sessions</param> /// <returns>SignonResult data structure</returns> public static SignonResultsStructure Signon(DataAccessMgr daMgr , SignonControl signonControl , string userId , string userPassword , UserEnvironmentStructure userEnv , bool allowMultipleSessions = false) { SignonResultsStructure results = new SignonResultsStructure(); results.ResultEnum = SignonResultsEnum.Success; results.ResultMessage = null; DbTableDmlMgr dmlSelectMgr = daMgr.DbCatalogGetTableDmlMgr(DataAccess.Constants.SCHEMA_CORE , Constants.UserMaster , Constants.UserCode , Constants.UserPassword , Constants.PasswordSalt , Constants.SignonRestricted , Constants.LastSignonDateTime , Constants.FailedSignonAttempts , Constants.ForcePasswordChange , Constants.MultipleSignonAllowed , Constants.DefaultAccessGroupCode); dmlSelectMgr.SetWhereCondition((j) => j.Column(Constants.UserId) == j.Parameter(dmlSelectMgr.MainTable.SchemaName , dmlSelectMgr.MainTable.TableName , Constants.UserId , daMgr.BuildParamName(Constants.UserId))); DbCommand cmdSelectUserMaster = daMgr.BuildSelectDbCommand(dmlSelectMgr, null); cmdSelectUserMaster.Parameters[daMgr.BuildParamName(Constants.UserId)].Value = userId; DbCommandMgr dbCmdMgr = new DbCommandMgr(daMgr); dbCmdMgr.AddDbCommand(cmdSelectUserMaster); if (!allowMultipleSessions) { dmlSelectMgr = daMgr.DbCatalogGetTableDmlMgr(DataAccess.Constants.SCHEMA_CORE , Constants.UserSessions , Constants.SessionCode , Constants.SessionDateTime , Constants.ForceSignOff); dmlSelectMgr.SetWhereCondition((j) => j.Column(Constants.UserId) == j.Parameter(dmlSelectMgr.MainTable.SchemaName , dmlSelectMgr.MainTable.TableName , Constants.UserId , daMgr.BuildParamName(Constants.UserId))); DbCommand cmdSelectSessions = daMgr.BuildSelectDbCommand(dmlSelectMgr, null); cmdSelectSessions.Parameters[daMgr.BuildParamName(Constants.UserId)].Value = userId; dbCmdMgr.AddDbCommand(cmdSelectSessions); } List <string> tableNames = new List <string>(); tableNames.Add(Constants.UserMaster); if (!allowMultipleSessions) { tableNames.Add(Constants.UserSessions); } DataSet userSigonData = dbCmdMgr.ExecuteDataSet(tableNames); DataTable userMaster = userSigonData.Tables[Constants.UserMaster]; // see if the userId exists and that the password is correct if (userMaster.Rows.Count == 0) { // userId does not exists, return an invalid credentials message results.ResultEnum = SignonResultsEnum.InvaldCredentials; results.ResultMessage = "Incorrect UserId or Password, please try again."; return(results); } string storedUserPassword = userMaster.Rows[0][Constants.UserPassword].ToString(); string passwordSalt = userMaster.Rows[0][Constants.PasswordSalt].ToString(); userPassword = Cryptography.HashOperation.ComputeHash(HashAlgorithmTypeEnum.SHA512HashAlgorithm, userPassword, passwordSalt); if (storedUserPassword != userPassword) { // invalid credentials; do not indicate whether userId or password is incorrect results.ResultEnum = SignonResultsEnum.InvaldCredentials; results.ResultMessage = "Incorrect UserId or Password, please try again."; Int16 failedAttempts = IncreaseFailedAttemptCount(daMgr, userId); // check for failed limit and restrict account if (failedAttempts >= signonControl.SignonControlData.FailedAttemptLimit) { RestrictSignon(daMgr, userId); } return(results); } // Since the UserId and Password matched, we found the account, // now check for account level restrictions bool signonRestricted = Convert.ToBoolean(userMaster.Rows[0][Constants.SignonRestricted]); if (signonRestricted) { // invalid credentials; do not indicate whether userId or password is incorrect results.ResultEnum = SignonResultsEnum.SignonsRestricted; results.ResultMessage = "The account is restrcited from signing on."; return(results); } bool ForcePasswordChange = Convert.ToBoolean(userMaster.Rows[0][Constants.ForcePasswordChange]); if (ForcePasswordChange) { // invalid credentials; do not indicate whether userId or password is incorrect results.ResultEnum = SignonResultsEnum.PasswordChangeRequired; results.ResultMessage = "The account requires a password change before proceeding."; return(results); } if (!allowMultipleSessions) { bool MultipleSignonAllowed = Convert.ToBoolean(userMaster.Rows[0][Constants.MultipleSignonAllowed]); DataTable userSessions = userSigonData.Tables[Constants.UserSessions]; Int16 sessionCount = 0; foreach (DataRow userSession in userSessions.Rows) { DateTime sessionDateTime = Convert.ToDateTime(userSession[Constants.SessionDateTime]); TimeSpan sessionInterval = daMgr.DbSynchTime - sessionDateTime; if (sessionInterval.TotalSeconds < signonControl.SignonControlData.TimeOutSeconds) { if (!MultipleSignonAllowed) { // if the user cannot have multiple signons, then we must check // for existing (Active) session results.ResultEnum = SignonResultsEnum.MultipleSignonRestricted; results.ResultMessage = "The account can only have a single signon session. They must signOff the other session first."; return(results); } ++sessionCount; } } } // if the userId and password are correct, check signon control (general restrictions) if (signonControl.SignonControlData.RestrictSignon) { results.ResultEnum = SignonResultsEnum.SignonsRestricted; results.ResultMessage = signonControl.SignonControlData.RestrictSignonMsg; return(results); } if (signonControl.SignonControlData.ForceSignoff) { results.ResultEnum = SignonResultsEnum.ForcedSignoff; results.ResultMessage = signonControl.SignonControlData.SignoffWarningMsg; return(results); } // successful signon UserSignonSessionStructure uss = new UserSignonSessionStructure(); uss.UserCode = Convert.ToInt32(userMaster.Rows[0][Constants.UserCode]); uss.PasswordHash = userMaster.Rows[0][Constants.UserPassword].ToString(); uss.DefaultAccessGroupCode = Convert.ToInt32(userMaster.Rows[0][Constants.DefaultAccessGroupCode]); uss.UserId = userId; uss.SignonApp.AppCode = userEnv.AppCode; uss.SignonApp.AppId = userEnv.AppId; uss.SignonApp.AppVersion = userEnv.AppVersion; uss.SessionCode = AddSession(daMgr, userId, uss.UserCode, userEnv); UserSession sessionMgr = new UserSession(daMgr, uss); results.ResultMessage = "Welcome."; if (userMaster.Rows[0][Constants.LastSignonDateTime] != DBNull.Value) { DateTime signonDateTime = Convert.ToDateTime(userMaster.Rows[0][Constants.LastSignonDateTime]); results.ResultMessage += " Your last signon was: ." + signonDateTime.ToString(); } results.ResultEnum = SignonResultsEnum.Success; results.UserSessionMgr = sessionMgr; return(results); }
/// <summary> /// Method with change the settings of the SignonControl table to the given new settings only if they have not already been changed. /// <para>If </para> /// </summary> /// <param name="lastModifiedUser">The userCode of the user who last updated the record (or null if not changed)</param> /// <param name="lastModifiedDateTime">The DateTime of when the user last updated the record (or null if not changed)</param> /// <param name="newControlSettings">Signon Control Data Strcutre containing the new values.</param> /// <returns>Boolean indicating if record was changed or not.</returns> internal bool ChangeControl(int?lastModifiedByUserCode , DateTime?lastModifiedDateTime , SignonControlStructure newControlSettings) { DbTableDmlMgr dmlChange = _daMgr.DbCatalogGetTableDmlMgr(DataAccess.Constants.SCHEMA_CORE , Constants.SignonControl); dmlChange.AddColumn(Constants.TimeoutSeconds); dmlChange.AddColumn(Constants.SignoffWarningMsg); dmlChange.AddColumn(Constants.ForceSignOff); dmlChange.AddColumn(Constants.RestrictSignon); dmlChange.AddColumn(Constants.StatusSeconds); dmlChange.AddColumn(Constants.RestrictSignonMsg); dmlChange.AddColumn(Constants.FailedAttemptLimit); dmlChange.SetWhereCondition((j) => j.Column(Constants.SignonControl) == j.Parameter(Constants.SignonControl)); DbCommandMgr dbCmdMgr = new DbCommandMgr(_daMgr); DbCommand cmdChangeOrig = _daMgr.BuildChangeDbCommand(dmlChange , Constants.LastModifiedUserCode , Constants.LastModifiedDateTime); cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.ControlCode)].Value = newControlSettings.SessionControlCode; cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.TimeoutSeconds)].Value = Convert.ToInt16(newControlSettings.TimeOutSeconds); cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.SignoffWarningMsg)].Value = newControlSettings.SignoffWarningMsg; cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.ForceSignOff)].Value = newControlSettings.ForceSignoff; cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.RestrictSignon)].Value = newControlSettings.RestrictSignon; cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.RestrictSignonMsg)].Value = newControlSettings.RestrictSignonMsg; cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.StatusSeconds)].Value = newControlSettings.StatusSeconds; cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.FailedAttemptLimit)].Value = newControlSettings.FailedAttemptLimit; if (lastModifiedByUserCode.HasValue) { cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.LastModifiedUserCode)].Value = lastModifiedByUserCode.Value; } if (lastModifiedDateTime.HasValue) { cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.LastModifiedDateTime)].Value = lastModifiedDateTime.Value; } if (newControlSettings.LastModifiedByUserCode.HasValue) { cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.LastModifiedUserCode, true)].Value = newControlSettings.LastModifiedByUserCode.Value; } cmdChangeOrig.Parameters[_daMgr.BuildParamName(Constants.LastModifiedDateTime, true)].Value = newControlSettings.LastModifiedByDateTime.Value; int rowsAffected = _daMgr.ExecuteNonQuery(cmdChangeOrig, null, null); if (rowsAffected == 1) { _signonControl.FailedAttemptLimit = newControlSettings.FailedAttemptLimit; _signonControl.ForceSignoff = newControlSettings.ForceSignoff; _signonControl.RestrictSignon = newControlSettings.RestrictSignon; _signonControl.RestrictSignonMsg = newControlSettings.RestrictSignonMsg; _signonControl.SignoffWarningMsg = newControlSettings.SignoffWarningMsg; _signonControl.StatusSeconds = newControlSettings.StatusSeconds; _signonControl.TimeOutSeconds = newControlSettings.TimeOutSeconds; _signonControl.LastModifiedByUserCode = newControlSettings.LastModifiedByUserCode; _signonControl.LastModifiedByDateTime = newControlSettings.LastModifiedByDateTime; return(true); } else { return(false); } }