protected void login(object sender, EventArgs e) { String username = LoginUser.UserName; String pass = LoginUser.Password; User user=new User(); user=user.authenticateUser(username, pass); if (user == null) { LoginUser.FailureText = " Incorrect username/password"; } else { Session["username"] = username; Session["privilege"] = user.getPrivilege(); if (user.getPrivilege() == 0) { Response.Redirect("../docInterface/showProblemsTable.aspx"); } else { Response.Redirect("../docInterface/showProblemsTable.aspx"); } } }
protected void Button1_Click(object sender, EventArgs e) { PatientNaming pn = new PatientNaming(); String username= pn.getUniqueName(); User user = new User(username, 0, "http://www.", null,""); Button1.Text+=user.insertUser(); Session["username"] = username; Session["privilege"] = 0; Response.Redirect("../careSeekersUI.aspx"); }
protected void Page_Load(object sender, EventArgs e) { if(Session["username"]==null) { Response.Redirect("../Account/Login.aspx?redirect="+Request.Url.ToString()); } TextBox2ProblemId.Text = Request.Params["problem_id"]; User user=new User(); TextBox3PatientName.Visible=false;//= Session["username"].ToString(); HyperLink1.NavigateUrl = "problemDetails.aspx?patient_data_id=" + Request.Params["problem_id"]; }
protected void Button1_Click(object sender, EventArgs e) { byte[] imgByte = new byte[FileUpload1User_pic.PostedFile.InputStream.Length + 1]; FileUpload1User_pic.PostedFile.InputStream.Read(imgByte,0,imgByte.Length); String email = TextBoxEmailId.Text; User user=new User(TextBox1CareGiverID.Text,1,"",imgByte,email); Button1.Text+= user.insertUser(); Session["username"] = TextBox1CareGiverID.Text; Session["privilege"] = 1; Response.Redirect("showProblemsTable.aspx"); }
public User authenticateUser(String username, String password) { MySqlConnection con = new MySqlConnection(); con.ConnectionString = MySQLDatabase.getConnectionString(); DataTable dt = new DataTable(); MySqlDataAdapter adpt = new MySqlDataAdapter("SELECT * FROM user WHERE username = '******' and password = '******'", con); // MySqlDataAdapter adpt = new MySqlDataAdapter("SELECT pic FROM student WHERE (name = '"+nameauto+"') ", con); adpt.Fill(dt); User user = new User(); if (dt.Rows.Count != 0) { String user_id1=null; String image_url1; int privilege1; int logged_in1; byte[] user_pic1={1,2}; int reputation1; int active1; /* if (dt.Rows[dt.Rows.Count - 1]["user_pic"] != null) { user_pic1 = (byte[])dt.Rows[dt.Rows.Count - 1]["user_pic"]; } else { user_pic1 = null; } * */ user_id1 = dt.Rows[dt.Rows.Count - 1]["userid"].ToString(); image_url1 = dt.Rows[0]["image_url"].ToString(); privilege1 = (int)dt.Rows[0]["privilege"]; logged_in1 = (int)dt.Rows[0]["logged_in"]; reputation1 = (int)dt.Rows[0]["reputation"]; active1 = (int)dt.Rows[0]["active"]; new User(user_id1, username, privilege1, image_url1, user_pic1, active1,reputation1,"" ); return user; } return null; }