public JsonResult CheckLogin(UsersModel user) { //use email and password to get full user model DataTable dt = new DataTableGenerator().GetDataTable("Select * from Users where email = '" + user.email.ToString() + "'and Password = '******'"); if(dt.Rows.Count == 1 ) { DataRow dr = dt.Rows[0]; UsersModel model = new UsersModel(); model.email = dr["email"].ToString(); model.password = dr["password"].ToString(); model.id = Convert.ToInt32(dr["id"]); model.fname = dr["fname"].ToString(); model.lname = dr["lname"].ToString(); model.username = dr["username"].ToString(); //Clear Previous SESSION Session.Clear(); //SET THE GLOBAL SESSION USER INFO Session["id"] = model.id; Session["email"] = model.email; Session["password"] = model.password; Session["fname"] = model.fname; Session["lname"] = model.lname; Session["username"] = model.username; return Json(model, JsonRequestBehavior.AllowGet); } else { return Json(new UsersModel(),JsonRequestBehavior.AllowGet); } }
public JsonResult Register(UsersModel newUser) { DataTable dt = new DataTableGenerator().GetDataTable(@"Select * from Users where email = '" + newUser.email.ToString() + "'"); if (dt.Rows.Count == 1) { return Json(new UsersModel(), JsonRequestBehavior.AllowGet); } else { UsersModel model = new UsersModel(); SqlTool sql = new SqlTool(); model.fname = newUser.fname; model.lname = newUser.lname; model.username = newUser.username; model.password = newUser.password; model.email = newUser.email; sql.runQuery("Insert into Users (fname,lname,email,password,username) select '" + model.fname.ToString() + "','" + model.lname.ToString() + "','" + model.email.ToString() + "','" + model.password.ToString() + "','" + model.username + "'"); return Json(model, JsonRequestBehavior.AllowGet); } }