private void Button_Click(object sender, RoutedEventArgs e) { if (nameField.Text != CheckUser.CheckUserName(nameField.Text)) { MessageBox.Show(CheckUser.CheckUserName(nameField.Text)); return; } if (surnamField.Text != CheckUser.CheckUserSurname(surnamField.Text)) { MessageBox.Show(CheckUser.CheckUserSurname(surnamField.Text)); return; } if (loginField.Text != CheckUser.CheckUserLogin(loginField.Text)) { MessageBox.Show(CheckUser.CheckUserLogin(loginField.Text)); return; } if (passwordField.Password.ToString() != CheckUser.CheckUserPassword(passwordField.Password.ToString())) { MessageBox.Show(CheckUser.CheckUserPassword(passwordField.Password.ToString())); return; } string userLogin = loginField.Text; string mySelectQuery = "SELECT * FROM Users WHERE [UserLogin] = '" + userLogin + "'"; using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, myConnectionString)) // проверяем, занят ли логин { DataTable table = new DataTable(); dataAdapter.Fill(table); if (table.Rows.Count > 0) { MessageBox.Show("Этот логин занят. Введите другой"); return; } else if (table.Rows.Count == 0) // если логин не занят, записываем { SqlCommand cmd = new SqlCommand(); cmd.CommandType = CommandType.Text; cmd.CommandText = "INSERT Users (UserLogin, UserPassword, UserName, UserSurname) VALUES (@login, @password, @name, @surname)"; cmd.Parameters.Add("@login", SqlDbType.VarChar).Value = loginField.Text; cmd.Parameters.Add("@password", SqlDbType.VarChar).Value = passwordField.Password.ToString(); cmd.Parameters.Add("@name", SqlDbType.VarChar).Value = nameField.Text; cmd.Parameters.Add("@surname", SqlDbType.VarChar).Value = surnamField.Text; cmd.Connection = myConnectionString; myConnectionString.Open(); cmd.ExecuteNonQuery(); myConnectionString.Close(); MessageBox.Show("Регистрация прошла успешно"); LoginForm loginForm = new LoginForm(); loginForm.Show(); this.Close(); } } }
private void AddButton_Click(object sender, RoutedEventArgs e) { if (login.Text != CheckUser.CheckUserLogin(login.Text)) { MessageBox.Show(CheckUser.CheckUserLogin(login.Text)); return; } string mySelectQuery = "SELECT * FROM Users WHERE [UserLogin] = '" + login.Text + "'"; using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, myConnectionString)) // проверяем, занят ли логин { DataTable table = new DataTable(); dataAdapter.Fill(table); if (table.Rows.Count > 0) { MessageBox.Show("Этот логин занят. Введите другой"); return; } } if (password.Password.ToString() != CheckUser.CheckUserPassword(password.Password.ToString())) { MessageBox.Show(CheckUser.CheckUserPassword(password.Password.ToString())); return; } if (name.Text != CheckUser.CheckUserName(name.Text)) { MessageBox.Show(CheckUser.CheckUserName(name.Text)); return; } if (surname.Text != CheckUser.CheckUserSurname(surname.Text)) { MessageBox.Show(CheckUser.CheckUserSurname(surname.Text)); return; } string connectionString = @"Data Source=(local)\SQLEXPRESS; Initial Catalog=StockRoom; Integrated Security=True"; using (SqlConnection addRow = new SqlConnection(connectionString)) using (SqlCommand lastCommnd = addRow.CreateCommand()) //здесь добавляем пользователя в систему { lastCommnd.CommandText = "INSERT INTO Users (UserLogin, UserPassword, UserName, UserSurname) VALUES (@login, @password, @name, @surname)"; lastCommnd.Parameters.AddWithValue("@login", login.Text); lastCommnd.Parameters.AddWithValue("@password", password.Password.ToString()); lastCommnd.Parameters.AddWithValue("@surname", surname.Text); lastCommnd.Parameters.AddWithValue("@name", name.Text); addRow.Open(); lastCommnd.ExecuteNonQuery(); addRow.Close(); } MessageBox.Show("Пользователь добавлен."); }
private void Button_Click(object sender, RoutedEventArgs e) { if (loginField.Text != CheckUser.CheckUserLogin(loginField.Text)) { MessageBox.Show(CheckUser.CheckUserLogin(loginField.Text)); return; } if (passwordField.Password.ToString() != CheckUser.CheckUserPassword(passwordField.Password.ToString())) { MessageBox.Show(CheckUser.CheckUserPassword(passwordField.Password.ToString())); return; } string userLogin = loginField.Text; string userPassword = passwordField.Password.ToString(); string myConnectionString = @"Data Source=(local)\SQLEXPRESS; Initial Catalog=StockRoom; Integrated Security=True"; string mySelectQuery = "SELECT * FROM Users WHERE [UserLogin] = '" + userLogin + "'and [UserPassword]='" + userPassword + "' and [AdministratorState] = 'false'"; using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, myConnectionString)) // проверка введенных данных { DataTable table = new DataTable(); dataAdapter.Fill(table); if (table.Rows.Count > 0) { StreamWriter loginFile = new StreamWriter("UserLogin.txt"); loginFile.Write(userLogin); loginFile.Close(); MainMenuUser mainMenu = new MainMenuUser(); mainMenu.Show(); this.Close(); } else if (table.Rows.Count == 0) { MessageBox.Show("Неверный логин или пароль"); return; } } }
private void SaveChanges(object sender, RoutedEventArgs e) { SqlConnection connection = new SqlConnection(connectionString); connection.Open(); if (criterion.Text != string.Empty && searchCriterion.Text != string.Empty) { int uC = Convert.ToInt32(searchCriterion.Text); if (criterion.Text == "Логин") { if (changingCriterion.Text != CheckUser.CheckUserLogin(changingCriterion.Text)) { MessageBox.Show(CheckUser.CheckUserLogin(changingCriterion.Text)); return; } string mySelectQuery = "SELECT UserLogin FROM Users WHERE [UserLogin] = '" + changingCriterion.Text + "'"; using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, connection)) // проверка логина на занятость { DataTable table = new DataTable(); dataAdapter.Fill(table); if (table.Rows.Count > 0) { MessageBox.Show("Этот логин занят. Введите другой"); return; } else if (table.Rows.Count == 0) { using (SqlCommand lastCommnd = connection.CreateCommand()) // обновляем данные { lastCommnd.CommandText = "UPDATE Users SET UserLogin = @login WHERE UserCode = @code"; lastCommnd.Parameters.AddWithValue("@login", changingCriterion.Text); lastCommnd.Parameters.AddWithValue("@code", uC); lastCommnd.ExecuteNonQuery(); } } } } else if (criterion.Text == "Пароль") { if (changingCriterion.Text != CheckUser.CheckUserPassword(changingCriterion.Text)) { MessageBox.Show(CheckUser.CheckUserPassword(changingCriterion.Text)); return; } using (SqlCommand lastCommnd = connection.CreateCommand()) // обновляем данные { lastCommnd.CommandText = "UPDATE Users SET UserPassword = @password WHERE UserCode = @code"; lastCommnd.Parameters.AddWithValue("@password", changingCriterion.Text); lastCommnd.Parameters.AddWithValue("@code", uC); lastCommnd.ExecuteNonQuery(); } } else if (criterion.Text == "Статус администратора") { if (changingCriterion.Text != CheckUser.CheckUserStatus(changingCriterion.Text)) { MessageBox.Show(CheckUser.CheckUserStatus(changingCriterion.Text)); return; } using (SqlCommand lastCommnd = connection.CreateCommand()) // обновляем данные { lastCommnd.CommandText = "UPDATE Users SET AdministratorState = @status WHERE UserCode = @code"; lastCommnd.Parameters.AddWithValue("@status", changingCriterion.Text); lastCommnd.Parameters.AddWithValue("@code", uC); lastCommnd.ExecuteNonQuery(); } } else if (criterion.Text == "Имя") { if (changingCriterion.Text != CheckUser.CheckUserName(changingCriterion.Text)) { MessageBox.Show(CheckUser.CheckUserName(changingCriterion.Text)); return; } using (SqlCommand lastCommnd = connection.CreateCommand()) // обновляем данные { lastCommnd.CommandText = "UPDATE Users SET UserName = @name WHERE UserCode = @code"; lastCommnd.Parameters.AddWithValue("@name", changingCriterion.Text); lastCommnd.Parameters.AddWithValue("@code", uC); lastCommnd.ExecuteNonQuery(); } } else if (criterion.Text == "Фамилия") { if (changingCriterion.Text != CheckUser.CheckUserSurname(changingCriterion.Text)) { MessageBox.Show(CheckUser.CheckUserSurname(changingCriterion.Text)); return; } using (SqlCommand lastCommnd = connection.CreateCommand()) // обновляем данные { lastCommnd.CommandText = "UPDATE Users SET UserSurname = @surname WHERE UserCode = @code"; lastCommnd.Parameters.AddWithValue("@surname", changingCriterion.Text); lastCommnd.Parameters.AddWithValue("@code", uC); lastCommnd.ExecuteNonQuery(); } } } else { MessageBox.Show("Вы не выбрали данные для изменения."); return; } MessageBoxResult mboxResult = MessageBox.Show("Данные обновлены. Желаете изменить что-нибудь еще?", "Предупреждение", MessageBoxButton.YesNo); if (mboxResult == MessageBoxResult.No) { ChangeUsersData changeUsersData = new ChangeUsersData(); changeUsersData.Show(); this.Close(); } connection.Close(); }