/// <summary>
/// Login mechanism
/// </summary>
/// <param name="UserName"></param>
/// <param name="password"></param>
/// <returns>if success returns the id of the user, else returns -1</returns>
public int Login(string UserName, string password)
{
Database.Domain.SystemUser user = systemUserRepository.GetByName(UserName);
if (user == null)
{
return(-1);
}
if (VerifyMd5Hash(password + user.Salt, user.Password))
{
// triggers the cache so it would be in it.
systemUserRepository.GetById(user.Id);
return(user.Id);
}
return(-1);
//SqlConnection connection = new SqlConnection(connectionString);
//SqlCommand cmd = new SqlCommand();
//SqlDataReader reader;
//cmd.CommandText = "SELECT Id FROM SystemUsers WHERE UserName=@UserName AND password=HASHBYTES(\'MD5\', CONCAT(@password,salt))";
//cmd.CommandType = CommandType.Text;
//cmd.Connection = connection;
//cmd.Parameters.AddWithValue("@UserName", UserName);
//cmd.Parameters.AddWithValue("@password", password);
//connection.Open();
//reader = cmd.ExecuteReader();
//if (!reader.HasRows || !reader.Read())
// return -1;
//int ans = (int)reader["Id"];
//connection.Close();
//return ans;
}
public IEnumerable <SystemUserTableViewModel> GetByName(string name, int pageNumber, int recordNumbers)
{
return(_mapper.Map <IEnumerable <SystemUser>, IEnumerable <SystemUserTableViewModel> >(_systemUserRepository.GetByName(name).ToPagedList(pageNumber, recordNumbers)));
}
public IEnumerable <SystemUser> GetByName(string name)
{
return(_systemUserRepository.GetByName(name));
}
