static SettingsManager() { BotBitsPath = Environment.GetFolderPath(Environment.SpecialFolder.ApplicationData) + "\\BotBits\\LoginForm"; if (!Directory.Exists(BotBitsPath)) Directory.CreateDirectory(BotBitsPath); try { _loginDatasPath = BotBitsPath + "\\Accounts.xml"; LoginDatas = !File.Exists(_loginDatasPath) ? new LoginDatas(true) : XmlSerialize.Deserialize<LoginDatas>(_loginDatasPath); } catch (Exception) { LoginDatas = new LoginDatas(true); MessageBox.Show(null, "Error", "Failed to load settings."); } }
public static string LoginSystem(string email_, string pass_) { #region BadKod //if (!email_.Contains("Login_")) //{ // int Cpass_Mail = (int)Mydb.ExecuteScalar("select COUNT(PASSWORD ) FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text); // if (Cpass_Mail > 0) // { // string pass_mail = Mydb.ExecuteScalar("select PASSWORD FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString(); // bool verf = (bool)Mydb.ExecuteScalar("select VERIFICATION_ from CLIENT where CLIENT_ID=(select CLIENT_ID from ACCOUNT where E_MAIL=@mail)", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text); // if (verf == true) // { // pass_ = GetMd5HashData(pass_); // if (pass_mail == pass_) // { // string Client_Id = Mydb.ExecuteScalar("select CLIENT_ID FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString(); // string loginId = Mydb.ExecuteScalar("select LOG_IN_ID FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString(); // return "{\"result\" : \"1\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + loginId + "\"}"; // } // else // { // return "{\"result\" : \"2\"}"; // } // } // else // { // return "{\"result\" : \"3\"}"; // } // } // else // { // return "{\"result\" : \"2\"}"; // } //} //else //{ // int Count_DBPass = (int)Mydb.ExecuteScalar("select count(PASSWORD) from ACCOUNT where LOGIN = @lg", new SqlParameter[] { new SqlParameter("@lg", email_) }, CommandType.Text); // if (Count_DBPass > 0) // { // string DBPass = Mydb.ExecuteScalar("select PASSWORD from ACCOUNT where LOGIN = @lg", new SqlParameter[] { new SqlParameter("@lg", email_) }, CommandType.Text).ToString(); // pass_ = GetMd5HashData(pass_); // if (pass_ == DBPass) // { // int LogId = (int)Mydb.ExecuteScalar("select LOG_IN_ID, PASSWORD from ACCOUNT where LOGIN=@lg", new SqlParameter[] { new SqlParameter("@lg", email_) }, CommandType.Text); // DataTable dt = Mydb.ExecuteReadertoDataTable("select * from ACCOUNT_ROLE where LOG_IN_ID=@lgId", new SqlParameter[] { new SqlParameter("@lgId", LogId) }, CommandType.Text); // List<MR> mrs = new List<MR>(); // foreach (DataRow item in dt.Rows) // { // MR mr = new MR(); // mr.sm = Mydb.ExecuteScalar("select MODUL_ID from MODUL_ROLE where MR_ID=@mr", new SqlParameter[] { new SqlParameter("@mr", Convert.ToInt32(item["MR_ID"])) }, CommandType.Text).ToString(); // mr.sr = Mydb.ExecuteScalar("select ROLE_ID from MODUL_ROLE where MR_ID=@mr", new SqlParameter[] { new SqlParameter("@mr", Convert.ToInt32(item["MR_ID"])) }, CommandType.Text).ToString(); // mrs.Add(mr); // } // JavaScriptSerializer js = new JavaScriptSerializer(); // return js.Serialize(mrs); // } // else // { // return "{\"result\" : \"2\"}"; // } // } // else // { // return "{\"result\" : \"2\"}"; // } //} #endregion string returnvalue = null; string SUPPLIER_EMAIL = email_; if (!email_.Contains("Login_")) { int Cpass_Mail = (int)Mydb.ExecuteScalar("select COUNT(PASSWORD ) FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text); if (Cpass_Mail > 0) { string pass_mail = Mydb.ExecuteScalar("select PASSWORD FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString(); bool verf = (bool)Mydb.ExecuteScalar("select VERIFICATION_ from CLIENT where CLIENT_ID=(select CLIENT_ID from ACCOUNT where E_MAIL=@mail)", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text); if (verf == true) { pass_ = GetMd5HashData(pass_); if (pass_mail == pass_) { string Client_Id = Mydb.ExecuteScalar("select CLIENT_ID FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString(); //4 string loginId = Mydb.ExecuteScalar("select LOG_IN_ID FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString(); //5 int count = (int)Mydb.ExecuteScalar("select COUNT(*) from ACCOUNT_ROLE where LOG_IN_ID =@lg", new SqlParameter[] { new SqlParameter("@lg", Convert.ToInt32(loginId)) }, CommandType.Text); //2 if (count == 1) { string role = Mydb.ExecuteScalar("select ROLE_ID from MODUL_ROLE where MR_ID=(select MR_ID from ACCOUNT_ROLE where LOG_IN_ID =@lg)", new SqlParameter[] { new SqlParameter("@lg", Convert.ToInt32(loginId)) }, CommandType.Text).ToString();//3 string RolName = "Нечего"; string ModulName = "Нечего"; if (role == "4") { ModulName = "Клиентское администрирование"; RolName = "Администратор"; } if (role == "3") { ModulName = "Диспетчерская"; RolName = "Диспетчер"; } if (role == "1") { ModulName = "Личный кабинет"; RolName = "Управляющий"; } Mydb.ExecuteNoNQuery("usp_ConstructorAPI_INSERT_LOG", new SqlParameter[] { new SqlParameter("@EVENT_TYPE", "Вход"), new SqlParameter("@EVENT_STATUS", "Систем"), new SqlParameter("@EVENT_ROLE", RolName), new SqlParameter("@EVENT_MODULE", ModulName), new SqlParameter("@EVENT_MESSAGE", "Пользователь вошел в систему"), new SqlParameter("@EVENT_MAKER", loginId) }, CommandType.StoredProcedure); returnvalue = "{\"result\" : \"1\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + loginId + "\",\"RoleId\":\"" + role + "\"}"; } if (count > 1) { DataTable dt = Mydb.ExecuteReadertoDataTable("select ROLE_ID from MODUL_ROLE where MR_ID in (select MR_ID from ACCOUNT_ROLE where LOG_IN_ID =@lg)", new SqlParameter[] { new SqlParameter("@lg", Convert.ToInt32(loginId)) }, CommandType.Text); List <LoginDatas> lds = new List <LoginDatas>(); foreach (DataRow item in dt.Rows) { LoginDatas ld = new LoginDatas(); ld.ROLE_ID = item["ROLE_ID"].ToString(); ld.Id = Client_Id; ld.LogId = loginId; ld.result = "5"; lds.Add(ld); } JavaScriptSerializer js = new JavaScriptSerializer(); //returnvalue= "{\"result\" : \"5\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + loginId + "\",\"Roles\":\"" + js.Serialize(rls) + "\"}"; returnvalue = js.Serialize(lds); } } else { returnvalue = "{\"result\" : \"2\"}"; } } else { returnvalue = "{\"result\" : \"3\"}"; } } else { // returnvalue= "{\"result\" : \"2\"}"; string RESULT = Mydb.ExecuteScalar("CHECK_SUPPLIER", new SqlParameter[] { new SqlParameter("@email", email_), new SqlParameter("@pass", pass_) }, CommandType.StoredProcedure).ToString(); returnvalue = RESULT; } } else { int IdCount = (int)Mydb.ExecuteScalar("select Count(*) from ACCOUNT where [LOGIN]=@login", new SqlParameter[] { new SqlParameter("@login", email_) }, CommandType.Text);//Convert.ToInt32(email_); if (IdCount != 0) { // email_ = email_.Substring(email_.LastIndexOf('_') + 1); int Id = (int)Mydb.ExecuteScalar("select LOG_IN_ID from ACCOUNT where [LOGIN]=@login", new SqlParameter[] { new SqlParameter("@login", email_) }, CommandType.Text);//Convert.ToInt32(email_);//5 int Count_DBPass = (int)Mydb.ExecuteScalar("select count(PASSWORD) from ACCOUNT where LOG_IN_ID=@id", new SqlParameter[] { new SqlParameter("@id", Id) }, CommandType.Text); if (Count_DBPass > 0) { string DBPass = Mydb.ExecuteScalar("select PASSWORD from ACCOUNT where LOG_IN_ID = @lg", new SqlParameter[] { new SqlParameter("@lg", Id) }, CommandType.Text).ToString(); pass_ = GetMd5HashData(pass_); if (pass_ == DBPass) { if (SUPPLIER_EMAIL != "Login_742") { string Client_Id = Mydb.ExecuteScalar("select CLIENT_ID FROM ACCOUNT WHERE LOG_IN_ID=@lg", new SqlParameter[] { new SqlParameter("@lg", Id) }, CommandType.Text).ToString();//1 //string loginId = Mydb.ExecuteScalar("select LOG_IN_ID FROM ACCOUNT WHERE E_MAIL=@mail", new SqlParameter[] { new SqlParameter("@mail", email_) }, CommandType.Text).ToString(); int count = (int)Mydb.ExecuteScalar("select COUNT(*) from ACCOUNT_ROLE where LOG_IN_ID =@lg", new SqlParameter[] { new SqlParameter("@lg", Id) }, CommandType.Text);//2 if (count == 1) { string role = Mydb.ExecuteScalar("select ROLE_ID from MODUL_ROLE where MR_ID=(select MR_ID from ACCOUNT_ROLE where LOG_IN_ID =@lg)", new SqlParameter[] { new SqlParameter("@lg", Id) }, CommandType.Text).ToString();//3 string RolName = "Нечего"; string ModulName = "Нечего"; if (role == "4") { ModulName = "Клиентское администрирование"; RolName = "Администратор"; } if (role == "3") { ModulName = "Диспетчерская"; RolName = "Диспетчер"; } if (role == "1") { ModulName = "Личный кабинет"; RolName = "Управляющий"; } if (role == "15") { ModulName = "Диспетчерская"; RolName = "Диспетчер поставщика"; } if (role == "17") { ModulName = "Диспетчерская"; RolName = "Супер Диспетчер"; } if (role == "16") { ModulName = "Профиль Управляющего"; RolName = "Ответственный"; } Mydb.ExecuteNoNQuery("usp_ConstructorAPI_INSERT_LOG", new SqlParameter[] { new SqlParameter("@EVENT_TYPE", "Вход"), new SqlParameter("@EVENT_STATUS", "Систем"), new SqlParameter("@EVENT_ROLE", RolName), new SqlParameter("@EVENT_MODULE", ModulName), new SqlParameter("@EVENT_MESSAGE", "Пользователь вошел в систему"), new SqlParameter("@EVENT_MAKER", Id) }, CommandType.StoredProcedure); returnvalue = "{\"result\" : \"1\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + Id + "\",\"RoleId\":\"" + role + "\"}"; } if (count > 1) { DataTable dt = Mydb.ExecuteReadertoDataTable("select ROLE_ID from MODUL_ROLE where MR_ID in (select MR_ID from ACCOUNT_ROLE where LOG_IN_ID =@lg)", new SqlParameter[] { new SqlParameter("@lg", Id) }, CommandType.Text);//3 List <LoginDatas> lds = new List <LoginDatas>(); foreach (DataRow item in dt.Rows) { LoginDatas ld = new LoginDatas(); ld.ROLE_ID = item["ROLE_ID"].ToString(); ld.Id = Client_Id; ld.LogId = Id.ToString(); ld.result = "5"; lds.Add(ld); } JavaScriptSerializer js = new JavaScriptSerializer(); //returnvalue= "{\"result\" : \"5\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + loginId + "\",\"Roles\":\"" + js.Serialize(rls) + "\"}"; returnvalue = js.Serialize(lds); //List<Roles> rls = new List<Roles>(); //foreach (DataRow item in dt.Rows) //{ // Roles rl = new Roles(); // rl.ROLE_ID = Convert.ToInt32(item["ROLE_ID"]); // rls.Add(rl); //} //JavaScriptSerializer js = new JavaScriptSerializer(); //returnvalue= "{\"result\" : \"5\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + Id + "\",\"Roles\":\"" + js.Serialize(rls) + "\"}"; } } else { string role = "15"; string RolName = "Нечего"; string ModulName = "Нечего"; if (role == "15") { ModulName = "Диспетчер поставщика"; RolName = "Диспетчер поставщика"; } Mydb.ExecuteNoNQuery("usp_ConstructorAPI_INSERT_LOG", new SqlParameter[] { new SqlParameter("@EVENT_TYPE", "Вход"), new SqlParameter("@EVENT_STATUS", "Систем"), new SqlParameter("@EVENT_ROLE", RolName), new SqlParameter("@EVENT_MODULE", ModulName), new SqlParameter("@EVENT_MESSAGE", "Пользователь вошел в систему"), new SqlParameter("@EVENT_MAKER", Id) }, CommandType.StoredProcedure); returnvalue = "{\"result\" : \"1\",\"Id\" :\"742\",\"LogId\" :\"" + Id + "\",\"RoleId\":\"" + role + "\"}"; } } else { returnvalue = "{\"result\" : \"2\"}"; } } else { returnvalue = "{\"result\" : \"2\"}"; } } else { returnvalue = "{\"result\" : \"2\"}"; } } return(returnvalue); }
private static string UK_Login(string Id_) { int Id = 0; string returnvalue = ""; if (Id_.Contains('@')) { Id = Convert.ToInt32(Mydb.ExecuteScalar("LoginIdendity", new SqlParameter[] { new SqlParameter("@procType", "5"), new SqlParameter("@mail", Id_) }, CommandType.StoredProcedure)); } else { Id_ = Id_.Substring(Id_.IndexOf('_') + 1); Id = Convert.ToInt32(Id_); } string Client_Id = Mydb.ExecuteScalar("LoginIdendity", new SqlParameter[] { new SqlParameter("@lg", Id), new SqlParameter("@procType", "1") }, CommandType.StoredProcedure).ToString();//1 int count = (int)Mydb.ExecuteScalar("LoginIdendity", new SqlParameter[] { new SqlParameter("@procType", "2"), new SqlParameter("@lg", Id) }, CommandType.StoredProcedure);//2 if (count == 1) { string role = Mydb.ExecuteScalar("LoginIdendity", new SqlParameter[] { new SqlParameter("@procType", "3"), new SqlParameter("@lg", Id) }, CommandType.StoredProcedure).ToString();//3 string RolName = "Нечего"; string ModulName = "Нечего"; if (role == "4") { ModulName = "Клиентское администрирование"; RolName = "Администратор"; } if (role == "3") { ModulName = "Диспетчерская"; RolName = "Диспетчер"; } if (role == "1") { ModulName = "Личный кабинет"; RolName = "Управляющий"; } if (role == "15") { ModulName = "Диспетчерская"; RolName = "Диспетчер поставщика"; } if (role == "17") { ModulName = "Диспетчерская"; RolName = "Супер Диспетчер"; } if (role == "16") { ModulName = "Профиль Управляющего"; RolName = "Ответственный"; } Mydb.ExecuteNoNQuery("usp_ConstructorAPI_INSERT_LOG", new SqlParameter[] { new SqlParameter("@EVENT_TYPE", "Вход"), new SqlParameter("@EVENT_STATUS", "Систем"), new SqlParameter("@EVENT_ROLE", RolName), new SqlParameter("@EVENT_MODULE", ModulName), new SqlParameter("@EVENT_MESSAGE", "Пользователь вошел в систему"), new SqlParameter("@EVENT_MAKER", Id) }, CommandType.StoredProcedure); returnvalue = "{\"result\" : \"1\",\"Id\" :\"" + Client_Id + "\",\"LogId\" :\"" + Id + "\",\"RoleId\":\"" + role + "\"}"; } if (count > 1) { DataTable dt = Mydb.ExecuteReadertoDataTable("LoginIdendity", new SqlParameter[] { new SqlParameter("@procType", "3"), new SqlParameter("@lg", Id) }, CommandType.StoredProcedure);//3 List <LoginDatas> lds = new List <LoginDatas>(); foreach (DataRow item in dt.Rows) { LoginDatas ld = new LoginDatas(); ld.ROLE_ID = item["ROLE_ID"].ToString(); ld.Id = Client_Id; ld.LogId = Id.ToString(); ld.result = "5"; lds.Add(ld); } JavaScriptSerializer js = new JavaScriptSerializer(); returnvalue = js.Serialize(lds); } return(returnvalue); }