public bool ChangePass(string _sNewUN, string sUserPass, string sOldUN) { bool _bReturTF = false; try { bool _bNewUNIsExist = false; _bNewUNIsExist = ExecuteQueryFunctions.ExeSclr(_conn, "SELECT * FROM User_Table AS ut WHERE user_name='" + _sNewUN + "'"); if (_bNewUNIsExist) { throw new Exception("This user name already exist. Try another please."); } else { string QueryString = "UPDATE User_Table SET user_name='" + _sNewUN + "',user_pass='******',UpdateBy=" + EMSGlobal._nCurrentUserID + " WHERE user_name='" + sOldUN + "' AND user_id=" + EMSGlobal._nCurrentUserID; ExecuteQueryFunctions.ExeNonQuery(_conn, QueryString); _bReturTF = true; } } catch (Exception e) { throw new ServiceException(e.Message, e); } return(_bReturTF); }
public ID Save(UserFunctionality oUserFunctionality) { bool bIsExist = false; try { if (oUserFunctionality.IsNew) { string QueryString = "SELECT COUNT(*) FROM Function_permission_Table WHERE UFID=" + oUserFunctionality.UFID + " AND user_id=" + oUserFunctionality.User_ID; bIsExist = ExecuteQueryFunctions.ExeSclr(_conn, QueryString); if (!bIsExist) { BusinessObject.Factory.SetID(oUserFunctionality, new ID(ExecuteQueryFunctions.GetNewID(_conn, "SELECT MAX(UFPID) FROM Function_permission_Table"))); string QueryString2 = "INSERT INTO Function_permission_Table (UFPID,UFID,user_id,DBUserID,DBSDT)" + "VALUES(" + oUserFunctionality.ObjectID + "," + oUserFunctionality.UFID + "," + oUserFunctionality.User_ID + "," + EMSGlobal._nCurrentUserID + ",'" + DateTime.Now + "')"; ExecuteQueryFunctions.ExeNonQuery(_conn, QueryString2); } } BusinessObject.Factory.SetObjectState(oUserFunctionality, ObjectState.Saved); } catch (Exception e) { throw new ServiceException(e.Message, e); } return(oUserFunctionality.ID); }
public LoginInterface Get(LoginInterface oLoginInterface) { try { bool result = true; string sUN = ""; string sUP = ""; //int nUserType = (int) oLoginInterface.user_type; sUN = oLoginInterface.user_name; //sUP = EMSGlobal.Encrypt(oLoginInterface.Password); sUP = oLoginInterface.user_pass; //SqlCommand cmd = new SqlCommand("SP_GetUserLoginInfo", _conn); //cmd.CommandType = CommandType.StoredProcedure; //cmd.Parameters.Add(new SqlParameter("@user_name", SqlDbType.VarChar)).Value = oLoginInterface.user_name; //cmd.Parameters.Add(new SqlParameter("@user_pass", SqlDbType.VarChar)).Value = oLoginInterface.user_pass; //cmd.Parameters.Add(new SqlParameter("@MacAddres", SqlDbType.VarChar)).Value = oLoginInterface.MacAddres; //if (_conn.State == ConnectionState.Open) { } //else { cmd.Connection.Open(); } //IDataReader reader = cmd.ExecuteReader(); //NullHandler oReader = new NullHandler(reader); //if (reader.Read()) //{ // oLoginInterface = CreateObject(oReader); //} //cmd.Dispose(); //cmd.Connection.Close(); //if (oLoginInterface.ID.ToInt32 > 0) //{ // if (oLoginInterface.ObjectID == 1) // { } // else // { // if (oLoginInterface.MacAddres == string.Empty) // { // throw new Exception("Unauthorised Machin. Please contact with admin."); // } // if (oLoginInterface.IsAuthorise == false) // { // throw new Exception("Unauthorised Machin. Please contact with admin."); // } // if (oLoginInterface.user_lock == true) // { // throw new Exception("Account is Locked. Please contact with admin."); // } // if (oLoginInterface.user_status == EnumUserStatus.Suspend) // { // throw new Exception("Account has been suspended. Please contact with admin."); // } // if (oLoginInterface.user_islogon == true) // { // throw new Exception("Someone using this ID. Please Try another ID."); // } // string QueryString3 = "UPDATE User_Table SET user_islogon=1 WHERE user_id=" + oLoginInterface.ObjectID; // ExecuteQueryFunctions.ExeSclr(_conn, QueryString3); // } //} //else //{ // throw new Exception("Incorrect User ID. Please type a correct User ID."); //} string QueryString = "SELECT COUNT(*) FROM User_Table WHERE user_name ='" + sUN + "' AND user_pass ='******'"; result = ExecuteQueryFunctions.ExeSclr(_conn, QueryString); if (result) { string QueryString2 = "SELECT * FROM User_Table WHERE user_name ='" + sUN + "' AND user_pass ='******'"; IDataReader reader = ExecuteQueryFunctions.ExeReader(_conn, QueryString2); NullHandler oReader = new NullHandler(reader); if (reader.Read()) { oLoginInterface = CreateObject(oReader); } reader.Close(); //string QueryString3 = "SELECT * FROM tbl_UserSecurity AS TUS WHERE TUS.user_id=" + oLoginInterface.ObjectID; _conn.Close(); if (oLoginInterface.ObjectID == 1) { } else { //if ((int)oLoginInterface.user_type != nUserType) //{ // throw new Exception("Yor are not authenticated in this type of user. Please select your area."); //} if (oLoginInterface.user_lock == true) { throw new Exception("Account is Locked. Please contact with admin."); } if (oLoginInterface.user_status == EnumUserStatus.Suspend) { throw new Exception("Account has been suspended. Please contact with admin."); } if (oLoginInterface.user_islogon == true) { throw new Exception("Someone using this ID. Please Try another ID."); } //string QueryString3 = "UPDATE User_Table SET user_islogon=1 WHERE user_id=" + oLoginInterface.ObjectID; //ExecuteQueryFunctions.ExeSclr(_conn, QueryString3); } //ExecuteQueryFunctions.ExeNonQuery(_conn, "EXEC dbo.SP_UpdateCelcInst"); } else { throw new Exception("Incorrect User ID. Please type a correct User ID."); } } catch (Exception e) { throw new ServiceException(e.Message); } return(oLoginInterface); }