public static bool Authentication(UserProfileSessionData up)
{
return true;
//if (up == null)
// return false;
//SqlConnection _dba = DBModel.Get_DB_Connection();
//StringBuilder _sba = new StringBuilder();
//string query = _sba.AppendFormat("select top 1 * from {0} where password=@password and username=@username", DataBaseTables.USERS).ToString();
//var result = _dba.Query<User>(query, new { up.username, up.password}).FirstOrDefault();
//_dba.Dispose();
//if (result != null)
//{
// return true;
//}
//return false;
}
public static bool Validate(UserProfileSessionData up)
{
Auth ls = new Auth();
return false;
}
public UserProfileSessionData Login(string username, string password)
{
_sb.Clear();
string query = _sb.AppendFormat("select top 1 * from {0} where password=@password and username=@username and status = @ACTIVE",DBTables.USERS).ToString();
var result = _db.Query<User>(query, new { username, password, ActiveStatus.ACTIVE }).FirstOrDefault();
if (result !=null)
{
UserProfileSessionData up = new UserProfileSessionData();
up.password = password;
up.username = username;
_sb.Clear();
string query1 = "";
if(result.role_code == RoleCode.STUDENT)
{
query1 = _sb.AppendFormat("select top 1 * from {0} where user_id=@user_id", DBTables.STUDENT).ToString();
var result1 = _db.Query<Student>(query1, new { result.user_id, result.role_code }).FirstOrDefault();
up.fullname = result1.full_name;
}
else if (result.role_code == RoleCode.PARENT)
{
query1 = _sb.AppendFormat("select top 1 * from {0} where user_id=@user_id", DBTables.PARENT).ToString();
var result1 = _db.Query<Parent>(query1, new { result.user_id, result.role_code }).FirstOrDefault();
up.fullname = result1.full_name;
}
else if (result.role_code == RoleCode.TEACHER)
{
query1 = _sb.AppendFormat("select top 1 * from {0} where user_id=@user_id", DBTables.TEACHER).ToString();
var result1 = _db.Query<Parent>(query1, new { result.user_id, result.role_code }).FirstOrDefault();
up.fullname = result1.full_name;
}
else if (result.role_code == RoleCode.ADMIN)
{
query1 = _sb.AppendFormat("select top 1 * from {0} where user_id=@user_id", DBTables.ADMIN).ToString();
var result1 = _db.Query<Users_detail>(query1, new { result.user_id}).FirstOrDefault();
up.fullname = result1.first_name + " " + result1.last_name;
}
if (result.role_code == RoleCode.TEACHER || result.role_code == RoleCode.ADMIN)
{
var status = ActiveStatus.ACTIVE;
var query2 = "Select * from " + DBTables.SESSION + " where school_id = @school_id and isDefault=@status and status=@status";
var session = _db.Query<Session>(query2, new { result.school_id, status }).FirstOrDefault();
if(session != null)
{
up.session_id = session.session_id;
up.session_is_active = true;
}
}
else
{
up.session_is_active = false;
}
up.user_id = result.user_id;
up.role_code = result.role_code;
up.school_id = result.school_id;
_sb.Clear();
string s1 = _sb.AppendFormat("select top 1 * from {0} where {0}.school_id=@school_id", DBTables.SCHOOL).ToString();
var school = _db.Query<School>(s1, new { result.school_id }).FirstOrDefault();
up.school_code = school.code;
up.school_name = school.name;
_db.Dispose();
return up;
}
return null;
}
