public ActionResult EditPassWord(string pass) { if (Session["id"] == null) { return(RedirectToAction("Login", "LoginId")); } try { EncryptDecrypt e = new EncryptDecrypt(); string id = Session["id"].ToString(); SqlConnection con2 = new SqlConnection(@"Data Source=(localdb)\MsSqlLocalDb;Initial Catalog=project;Integrated Security=True"); con2.Open(); SqlCommand cmd2 = new SqlCommand(); cmd2.Connection = con2; cmd2.CommandType = CommandType.Text; cmd2.CommandText = "update Users set Password=@Pass where UserName=@id"; cmd2.Parameters.AddWithValue("id", id); cmd2.Parameters.AddWithValue("pass", e.Base64Encode(pass)); cmd2.ExecuteNonQuery(); con2.Close(); return(RedirectToAction("Login", "LoginId")); } catch (Exception e) { return(RedirectToAction("LoginId", "Login")); } }
public ActionResult Login(string username, string pass) { try { EncryptDecrypt b = new EncryptDecrypt(); SqlConnection con = new SqlConnection(@"Data Source=(localdb)\MsSqlLocalDb;Initial Catalog=project;Integrated Security=True"); con.Open(); SqlCommand cmd = new SqlCommand(); cmd.Connection = con; cmd.CommandType = CommandType.Text; cmd.CommandText = "select * from Users where UserName=@UserName and Password=@Password and Flag=1"; cmd.Parameters.AddWithValue("Password", b.Base64Encode(pass)); cmd.Parameters.AddWithValue("UserName", username); SqlDataReader rd = cmd.ExecuteReader(); if (rd.Read()) { var type = Convert.ToString(rd["Type"]); Session["id"] = Convert.ToString(rd["UserName"]); ViewBag.successMessage = "Login succesfull"; if (type.Equals("Client")) { return(RedirectToAction("ClientView", "Default")); } else if (type.Equals("Owner")) { return(RedirectToAction("OwnerView", "BookingList")); } else if (type.Equals("Admin")) { return(RedirectToAction("AdminView", "Default")); } } con.Close(); ViewBag.Message = "Invalid Credentials !"; return(View()); } catch (Exception ex) { Console.Write(ex); return(View()); } }
public ActionResult OwnerRegistration(Owner o) { SqlTransaction trans = null; EncryptDecrypt e = new EncryptDecrypt(); try { // TODO: Add insert logic here SqlConnection con = new SqlConnection(@"Data Source=(localdb)\MsSqlLocalDb;Initial Catalog=project;Integrated Security=True"); con.Open(); SqlCommand cmd = new SqlCommand(); cmd.Connection = con; trans = con.BeginTransaction("abc"); cmd.Transaction = trans; cmd.CommandType = CommandType.Text; cmd.CommandText = "insert into Users values(@UserName,@Password,@Type,@Flag)"; cmd.Parameters.AddWithValue("UserName", o.Email); cmd.Parameters.AddWithValue("Password", e.Base64Encode(o.Password)); cmd.Parameters.AddWithValue("Flag", 1); cmd.Parameters.AddWithValue("Type", "Owner"); trans.Save("saveusers"); cmd.ExecuteNonQuery(); cmd.Parameters.Clear(); cmd.CommandType = CommandType.Text; cmd.CommandText = "insert into Owner values(@Email,@Name,@Phone,@Description,@Address,@Latitude,@Longitude,@Flag)"; cmd.Parameters.AddWithValue("Email", o.Email); cmd.Parameters.AddWithValue("Name", o.Name); cmd.Parameters.AddWithValue("Phone", o.Phone); cmd.Parameters.AddWithValue("Description", o.Description); cmd.Parameters.AddWithValue("Address", o.Address); cmd.Parameters.AddWithValue("Latitude", o.Latitude); cmd.Parameters.AddWithValue("Longitude", o.Longitude); cmd.Parameters.AddWithValue("Flag", 0); cmd.ExecuteNonQuery(); trans.Commit(); con.Close(); ViewData["msg"] = "registered succsessfully"; return(RedirectToAction("Login", "LoginId")); } catch (SqlException ex) { ViewBag.Message = "error"; trans.Rollback(); return(View()); } }
public ActionResult ClientRegistration(Client o) { try { EncryptDecrypt b = new EncryptDecrypt(); if ((o.Name.Equals("")) || (o.Email.Equals("")) || o.Password.Equals("") || (o.Phone < 1000000000) && (o.Phone > 9999999999) || (o.Age < 12) && (o.Age > 80)) { ViewBag.message = "Fill details correctly"; return(RedirectToAction("ClientRegistraion", "Client")); } // TODO: Add insert logic here SqlConnection con = new SqlConnection(@"Data Source=(localdb)\MsSqlLocalDb;Initial Catalog=project;Integrated Security=True"); con.Open(); SqlCommand cmd = new SqlCommand(); cmd.Connection = con; cmd.CommandType = CommandType.Text; cmd.CommandText = "insert into Users values(@UserName,@Password,@Type,@Flag)"; cmd.Parameters.AddWithValue("UserName", o.Email); cmd.Parameters.AddWithValue("Password", b.Base64Encode(o.Password)); cmd.Parameters.AddWithValue("Flag", 1); cmd.Parameters.AddWithValue("Type", "Client"); cmd.ExecuteNonQuery(); cmd.Parameters.Clear(); cmd.CommandType = CommandType.Text; cmd.CommandText = "insert into Client values(@Email,@Name,@Phone,@Gender,@Age,@Membership,@Flag)"; cmd.Parameters.AddWithValue("Email", o.Email); cmd.Parameters.AddWithValue("Name", o.Name); cmd.Parameters.AddWithValue("Phone", o.Phone); cmd.Parameters.AddWithValue("Gender", o.Gender); cmd.Parameters.AddWithValue("Age", o.Age); cmd.Parameters.AddWithValue("Membership", 0); cmd.Parameters.AddWithValue("Flag", 1); cmd.ExecuteNonQuery(); con.Close(); // ViewData["msg"] = "registered succsessfully"; Response.Write("<script>alert(x)</script>"); return(RedirectToAction("Login", "LoginId")); } catch (Exception e) { return(View()); } }
public ActionResult OwnerRegistration(Owner o) { EncryptDecrypt e = new EncryptDecrypt(); try { // TODO: Add insert logic here SqlConnection con = new SqlConnection(@"Data Source=(localdb)\MsSqlLocalDb;Initial Catalog=project;Integrated Security=True"); con.Open(); SqlCommand cmd = new SqlCommand(); cmd.Connection = con; cmd.CommandType = CommandType.Text; cmd.CommandText = "insert into Users values(@UserName,@Password,@Type,@Flag)"; cmd.Parameters.AddWithValue("UserName", s); cmd.Parameters.AddWithValue("Password", e.Base64Encode(o.Password)); cmd.Parameters.AddWithValue("Flag", 1); cmd.Parameters.AddWithValue("Type", "Owner"); cmd.ExecuteNonQuery(); cmd.Parameters.Clear(); cmd.CommandType = CommandType.Text; cmd.CommandText = "insert into Owner values(@Email,@Name,@Phone,@Description,@Address,@Latitude,@Longitude,@Flag)"; cmd.Parameters.AddWithValue("Email", s); cmd.Parameters.AddWithValue("Name", o.Name); cmd.Parameters.AddWithValue("Phone", o.Phone); cmd.Parameters.AddWithValue("Description", o.Description); cmd.Parameters.AddWithValue("Address", o.Address); cmd.Parameters.AddWithValue("Latitude", o.Latitude); cmd.Parameters.AddWithValue("Longitude", o.Longitude); cmd.Parameters.AddWithValue("Flag", 1); cmd.ExecuteNonQuery(); con.Close(); Response.Write("<script>alert('data entered successfully')</script>"); return(RedirectToAction("Login", "LoginId")); } catch (SqlException ex) { Response.Write("<script>alert('primary key voilation')</script>"); return(View()); } }
public ActionResult ClientRegistration(Client o) { EncryptDecrypt b = new EncryptDecrypt(); try { // TODO: Add insert logic here SqlConnection con = new SqlConnection(@"Data Source=(localdb)\MsSqlLocalDb;Initial Catalog=project;Integrated Security=True"); con.Open(); SqlCommand cmd = new SqlCommand(); cmd.Connection = con; cmd.CommandType = CommandType.Text; cmd.CommandText = "insert into Users values(@UserName,@Password,@Type,@Flag)"; cmd.Parameters.AddWithValue("UserName", s); cmd.Parameters.AddWithValue("Password", b.Base64Encode(o.Password)); cmd.Parameters.AddWithValue("Flag", 1); cmd.Parameters.AddWithValue("Type", "Client"); cmd.ExecuteNonQuery(); cmd.Parameters.Clear(); cmd.CommandType = CommandType.Text; cmd.CommandText = "insert into Client values(@Email,@Name,@Phone,@Gender,@Age,@Membership,@Flag)"; cmd.Parameters.AddWithValue("Email", s); cmd.Parameters.AddWithValue("Name", o.Name); cmd.Parameters.AddWithValue("Phone", o.Phone); cmd.Parameters.AddWithValue("Gender", o.Gender); cmd.Parameters.AddWithValue("Age", o.Age); cmd.Parameters.AddWithValue("Membership", 0); cmd.Parameters.AddWithValue("Flag", 1); cmd.ExecuteNonQuery(); con.Close(); Response.Write("<script>alert('data entered successfully')</script>"); return(RedirectToAction("Login", "LoginId")); } catch (Exception e) { // Response.Write("<script>alert('primary key voilation')</script>"); return(View()); } }