public E_Users AccesoSistema(String user, String pass)
{
SqlConnection cn = null;
SqlCommand cmd = null;
E_Users objUsuario = null;
SqlDataReader dr = null;
try
{
cn = D_conexion.getInstance().ConxionBD();
cmd = new SqlCommand("SELUSUSUARIO", cn);
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.AddWithValue("@usuario", user);
cmd.Parameters.AddWithValue("@pass", pass);
cn.Open();
dr = cmd.ExecuteReader();
if (dr.Read())
{
objUsuario = new E_Users();
objUsuario.idUsuario = Convert.ToInt32(dr["idUsuario"].ToString());
objUsuario.usuario = dr["usuario"].ToString();
objUsuario.pass = dr["pass"].ToString();
}
}
catch (Exception e)
{
objUsuario = null;
throw e;
}
finally
{
cn.Close();
}
return(objUsuario);
}
public E_Users LoginValidate(string user, string password)
{
//le pasamos el procedimiento almacenado con el que vamos a trabajar
SqlCommand cmd = new SqlCommand("SP_login_user_access", connection);
//le expecificamos que es un procedimiento y un texto plano
cmd.CommandType = CommandType.StoredProcedure;
connection.Open();
cmd.Parameters.AddWithValue("@user_name", user);
cmd.Parameters.AddWithValue("@password", password);
SqlDataReader dataReader = cmd.ExecuteReader();
E_Users users = null;
if (dataReader.Read())
{
users = new E_Users();
users.IdUser = int.Parse(dataReader["id_user"].ToString());
users.IdRol = int.Parse(dataReader["id_rol"].ToString());
//users.IdEmployee = int.Parse(dataReader["id_employee"].ToString());
users.UserName = dataReader["user_name"].ToString();
users.EmployeeName = dataReader[3].ToString();
users.LastName = dataReader[4].ToString();
users.Emaill = dataReader[5].ToString();
}
connection.Close();
return(users);
}
protected void btnIngresar_Click(object sender, EventArgs e)
{
E_Users objUsuario = N_Usuario.getInstance().AccesoSistema(txtUsers.Text, txtpass.Text);
if (objUsuario != null)
{
Response.Write("<script>alert('USUARIO CORRECTO')</script>");
Response.Redirect("PanelGeneral.aspx");
}
else
{
Response.Write("<script>alert('USUARIO INCORRECTO')</script>");
}
#region "Prueba"
//string User = txtUsers.Text;
//string pass = txtpass.Text;
//string userName = "******";
//string passName = "123";
//if(User.Equals(userName)&& pass.Equals(passName))
//{
// Response.Write("<script>alert('USUARIO CORRECTO')</script>");
//}
//else
//{
// Response.Write("<script>alert('USUARIO INCORRECTO')</script>");
//}
#endregion
}
public PartialViewResult NavBar()
{
var name = Session["Username"];
E_Users usr = db.E_Userss.SqlQuery("Select * from E_Users where Username=@p0", name).FirstOrDefault();
SocialViewModel views = new SocialViewModel();
views.E_users = usr;
return(PartialView("_NavBar", views));
}
public ActionResult GetFrnInfo(String id)
{
E_Users user = db.E_Userss.SqlQuery("Select * from E_Users where ID=@p0 ", id).SingleOrDefault();
SocialViewModel mysocialviewmodel = new SocialViewModel();
mysocialviewmodel.E_users = user;
return(PartialView("Profile", mysocialviewmodel));
}
/// <summary>
/// INDEX
/// </summary>
/// <returns></returns>
public ActionResult Index()
{
var name = Session["Username"];
E_Users result = db.E_Userss.SqlQuery("Select * from E_Users where Username=@p0", name).FirstOrDefault();
SocialViewModel mysocialviewmodel = new SocialViewModel();
mysocialviewmodel.E_users = result;
return(View(mysocialviewmodel));
}
public ActionResult ProfileViewUser(String id)
{
Convert.ToInt32(id);
E_Users user = new E_Users();
E_Users result = db.E_Userss.SqlQuery("Select * from E_Users where ID=@p0", id).FirstOrDefault();
SocialViewModel mysocialviewmodel = new SocialViewModel();
mysocialviewmodel.E_users = result;
return(View(mysocialviewmodel));
}
public DataTable D_user(E_Users obje)
{
SqlCommand cmd = new SqlCommand("Logueo", cn);
cmd.CommandType = CommandType.StoredProcedure;
cmd.Parameters.AddWithValue("@ID", obje.usuario);
cmd.Parameters.AddWithValue("@contraseña", obje.clave);
SqlDataAdapter da = new SqlDataAdapter(cmd);
DataTable dt = new DataTable();
da.Fill(dt);
return(dt);
}
public ActionResult Register(E_Users user)
{
if (ModelState.IsValid)
{
using (EmartDBContexts db = new EmartDBContexts())
{
db.E_Userss.Add(user);
db.SaveChanges();
}
ModelState.Clear();
ViewBag.Message = user.FirstName + " " + user.LastName + " successfully created.";
}
return(View());
}
/// <summary>
/// PROFILES
/// </summary>
/// <returns></returns>
public new ActionResult Profile()
{
if (Session["ID"] != null)
{
var id = Session["ID"];
E_Users user = new E_Users();
E_Users result = db.E_Userss.SqlQuery("Select * from E_Users where ID=@p0", id).FirstOrDefault();
SocialViewModel mysocialviewmodel = new SocialViewModel();
mysocialviewmodel.E_users = result;
return(View(mysocialviewmodel));
}
else
{
return(RedirectToAction("Login"));
}
}
public ActionResult Login(E_Users user)
{
var usr = db.E_Userss.Single(u => u.Username == user.Username && u.Password == user.Password);
if (usr != null)
{
Session["ID"] = usr.ID.ToString();
Session["Username"] = user.Username.ToString();
return(RedirectToAction("Index"));
}
else
{
return(RedirectToAction("Login"));
}
}
public JsonResult UploadImage(E_Users user)
{
int ImageID = 0;
var file = user.UserImage;
byte[] imagbyte = null;
if (file != null)
{
file.SaveAs(Server.MapPath("/uploadimage/" + file.FileName));
BinaryReader reader = new BinaryReader(file.InputStream);
imagbyte = reader.ReadBytes(file.ContentLength);
UserImageStore img = new UserImageStore();
img.ImageName = file.FileName;
img.ImageByte = imagbyte;
img.ImagePath = "/uploadimage/" + file.FileName;
img.ImageisDeleted = false;
db.UserImageStore.Add(img);
db.SaveChanges();
E_Users b = new E_Users();
E_Users usr = new E_Users();
usr.ID = 5;
usr.PhoneNumber = 100;
usr.imgid = 10;
db.E_Userss.SqlQuery("UPDATE E_Users SET imgid=@p0 where ID=@p1", img.ImageID, user.ID);
db.SaveChanges();
int output = db.Database.ExecuteSqlCommand("update E_Users set imgid=@p0 where ID=@p1 ", img.ImageID, user.ID);
ImageID = img.ImageID;
ImageID = user.ID;
if (output > 0)
{
ViewBag.Messge = "Added";
}
}
return(Json(ImageID, JsonRequestBehavior.AllowGet));
}
public ActionResult ProfileView(String name)
{
if (Session["ID"] != null)
{
E_Users user = new E_Users();
E_Users result = db.E_Userss.SqlQuery("Select * from E_Users where ID=@p0", name).FirstOrDefault();
SocialViewModel mysocialviewmodel = new SocialViewModel();
mysocialviewmodel.E_users = result;
return(View(mysocialviewmodel));
}
else
{
return(RedirectToAction("Login"));
}
//SocialViewModel socialuser = new SocialViewModel();
//var users = db.E_Userss.SqlQuery("Select * from E_Users where ID = @p0",id).SingleOrDefault();
//socialuser.E_users = users;
//return View(socialuser);
}
public ActionResult SendRequest(E_Users obj)
{
if (Session["UserID"] != null)
{
string name = Session["ID"].ToString();
int nam = Int32.Parse(name);
List <object> user = new List <object>();
user.Add(nam);
user.Add(obj.ID);
user.Add(0);
object[] userarray = user.ToArray();
db.Database.ExecuteSqlCommand("Insert into E_Friends values(@p0,@p1,@p2)", userarray);
}
return(View());
}
private void btnLogin_Click(object sender, EventArgs e)
{
try
{
if (txtUserName.Text == "" || string.IsNullOrEmpty(txtUserName.Text))
{
if (txtPassword.Text != "")
{
lbEerroPass.Visible = false;
}
lbEerroUser.ForeColor = System.Drawing.Color.Red;
lbEerroUser.Visible = true;
lbEerroUser.Text = "Campos Obligatorios";
txtUserName.Focus();
return;
}
if (txtPassword.Text == "" || string.IsNullOrEmpty(txtPassword.Text))
{
if (txtUserName.Text != "")
{
lbEerroUser.Visible = false;
}
lbEerroPass.ForeColor = System.Drawing.Color.Red;
lbEerroPass.Visible = true;
lbEerroPass.Text = "Campos Obligatorios";
lbEerroPass.Focus();
return;
}
//encriptamos el password.
string password = CapaDatos.EncryptPassword.GetSHA256(txtPassword.Text);
usersEntities = users.LoginValidate(txtUserName.Text, password);
//luego de validar el user y pass ingresado sean valido.
if (usersEntities != null)
{
//creamos una session
//y llenamos los datos del usuariio logueado en nuestras variables globales.
SessionUsers.IdUser = usersEntities.IdUser;
SessionUsers.IdRol = usersEntities.IdRol;
SessionUsers.UserName = usersEntities.UserName;
SessionUsers.EmployeeName = usersEntities.EmployeeName;
SessionUsers.LastName = usersEntities.LastName;
SessionUsers.Email = usersEntities.Emaill;
//validamos el rol del usuario que esta logueado
switch (usersEntities.IdRol)
{
case 1:
this.Hide();
UserPrivileges.AdminPrivileges();
//Application.Exit();
break;
case 2:
this.Hide();
UserPrivileges.CashierPrivileges();
//Application.Exit();
break;
case 3:
MessageBox.Show("No se que hacer contigo " + usersEntities.EmployeeName, "todo bien");
break;
}
}
else
{
txtUserName.Text = "";
txtPassword.Text = "";
txtUserName.Focus();
MessageBox.Show("Usuario O Contraseseña no son valido ", "Algo no anda bien.");
}
}
catch (Exception ex)
{
MessageBox.Show("Usuario o Contraseña incorrectos no puede ser ." + ex.Message, "Valla, algo no anda bien!!");
}
}
private void btnSavePassword_Click(object sender, EventArgs e)
{
if (txtOldPassword.Text == "" || string.IsNullOrEmpty(txtOldPassword.Text))
{
if (txtOldPassword.Text != "")
{
lblErroOldPassword.Visible = false;
}
lblErroOldPassword.ForeColor = System.Drawing.Color.Red;
lblErroOldPassword.Visible = true;
lblErroOldPassword.Text = "Campos Obligatorios";
txtOldPassword.Focus();
return;
}
if (txtPasswordNew.Text == "" || string.IsNullOrEmpty(txtPasswordNew.Text))
{
if (!string.IsNullOrEmpty(txtOldPassword.Text))
{
lblErroOldPassword.Visible = false;
}
if (txtPasswordNew.Text != "")
{
lblEerroPass.Visible = false;
}
lblEerroPass.ForeColor = System.Drawing.Color.Red;
lblEerroPass.Visible = true;
lblEerroPass.Text = "Campos Obligatorios";
txtPasswordNew.Focus();
return;
}
if (txtPasswordNew.Text != txtPasswordRepeat.Text)
{
if (txtPasswordNew.Text != "")
{
lblEerroPass.Visible = false;
}
lblErroPasswordRepeat.ForeColor = System.Drawing.Color.Red;
lblErroPasswordRepeat.Visible = true;
lblErroPasswordRepeat.Text = "Contraseñas NO Coinciden";
txtPasswordNew.Text = "";
txtPasswordNew.Focus();
return;
}
//encriptamos el password.
string passwordOld = CapaDatos.EncryptPassword.GetSHA256(txtOldPassword.Text);
string passwordNew = CapaDatos.EncryptPassword.GetSHA256(txtPasswordNew.Text);
usersEntities = users.LoginValidate(SessionUsers.UserName, passwordOld);
if (usersEntities == null)
{
lblErroOldPassword.ForeColor = System.Drawing.Color.Red;
lblErroOldPassword.Visible = true;
lblErroOldPassword.Text = "La Contraseña No Es Valida";
txtOldPassword.Focus();
}
else
{
lblErroOldPassword.Visible = false;
try
{
int passwordChanged = users.UpdatePassword(SessionUsers.IdUser, passwordNew);
if (passwordChanged == 1)
{
Close();
FrmSuccess frmSuccess = new FrmSuccess("Contraseña Actualizada");
frmSuccess.ShowDialog();
}
}
catch (Exception es)
{
MessageBox.Show("error " + es.Message);
}
}
}
public DataTable N_user(E_Users obje)
{
return(objd.D_user(obje));
}
