// ---- funciones------- public bool CreateUser(UserBE userBE) { bool registrado = false; try { using (SqlConnection cnx = new SqlConnection(connectionString)) { SqlCommand cmd = new SqlCommand("usp_CreationUser", cnx); cmd.CommandType = CommandType.StoredProcedure; cmd.CommandTimeout = 600;//6 segundos SQLHelper.AddParam(ref cmd, "@user_role", ParameterDirection.Input, SqlDbType.Int, userBE.User_Role); SQLHelper.AddParam(ref cmd, "@username", ParameterDirection.Input, SqlDbType.VarChar, userBE.username); SQLHelper.AddParam(ref cmd, "@name", ParameterDirection.Input, SqlDbType.VarChar, userBE.Name); SQLHelper.AddParam(ref cmd, "@lastname", ParameterDirection.Input, SqlDbType.VarChar, userBE.LastName); SQLHelper.AddParam(ref cmd, "@email", ParameterDirection.Input, SqlDbType.VarChar, userBE.Email); SQLHelper.AddParam(ref cmd, "@phonenumber", ParameterDirection.Input, SqlDbType.VarChar, userBE.PhoneNumber); SQLHelper.AddParam(ref cmd, "@userid", ParameterDirection.Input, SqlDbType.VarChar, userBE.IdUser); //Encriptar contrasenia var pass = PasswordSC.PasswordEncriptarSHA512(userBE.Password); SQLHelper.AddParam(ref cmd, "@password", ParameterDirection.Input, SqlDbType.VarChar, pass); SQLHelper.AddParam(ref cmd, "@dni", ParameterDirection.Input, SqlDbType.VarChar, userBE.DNI); SQLHelper.AddParam(ref cmd, "@birthday", ParameterDirection.Input, SqlDbType.DateTime, userBE.Birthday); SQLHelper.AddParam(ref cmd, "@status", ParameterDirection.Input, SqlDbType.Char, userBE.Status); SQLHelper.AddParam(ref cmd, "@gener", ParameterDirection.Input, SqlDbType.Char, userBE.Gener); //para recibir un parametro de respuesta del storedprocedure //cmd.Parameters.Add("@userId", SqlDbType.UniqueIdentifier).Direction = ParameterDirection.Output; //abrimos la conexion cnx.Open(); //ejecutamos el query cmd.ExecuteNonQuery(); //obtenemos el valor de respuesta despues de recibir el output del stored procedure //var userid = cmd.Parameters["@userId"].ToString(); registrado = true; } } catch (Exception e) { throw new Exception(e.Message); } return(registrado); }
public UserLoginBE getLogin(String username, String password) { UserLoginBE user = new UserLoginBE(); try { using (SqlConnection cnx = new SqlConnection(connectionString)) { SqlCommand cmd = new SqlCommand("usp_login", cnx); cmd.CommandType = CommandType.StoredProcedure; cmd.CommandTimeout = 600; cmd.Parameters.Add("@username", SqlDbType.VarChar).Value = username; var pass = PasswordSC.PasswordEncriptarSHA512(password); cmd.Parameters.Add("@password", SqlDbType.VarChar).Value = pass; cnx.Open(); IDataReader dr = cmd.ExecuteReader(); using (dr) { while (dr.Read()) { user.IdUser = dr.GetGuid(dr.GetOrdinal("IdUser")).ToString(); user.Name = dr.GetString(dr.GetOrdinal("Name")); user.LastName = dr.GetString(dr.GetOrdinal("LastName")); user.DNI = dr.GetString(dr.GetOrdinal("DNI")); user.Role = dr.GetString(dr.GetOrdinal("rol")); } } } } catch (Exception ex) { throw new Exception(ex.Message); } return(user); }