private void Registration_Click(object sender, RoutedEventArgs e) { if (nameField.Text != CheckUser.CheckUserName(nameField.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserName(nameField.Text)); return; } if (surnamField.Text != CheckUser.CheckUserSurname(surnamField.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserSurname(surnamField.Text)); return; } if (loginField.Text != CheckUser.CheckUserLogin(loginField.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserLogin(loginField.Text)); return; } if (passwordField.Password.ToString() != CheckUser.CheckUserPassword(passwordField.Password.ToString())) { System.Windows.MessageBox.Show(CheckUser.CheckUserPassword(passwordField.Password.ToString())); return; } string userLogin = loginField.Text; string mySelectQuery = "SELECT * FROM Users WHERE [UserLogin] = '" + userLogin + "'"; using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, myConnectionString)) { DataTable table = new DataTable(); dataAdapter.Fill(table); if (table.Rows.Count > 0) { System.Windows.MessageBox.Show("Этот логин занят. Введите другой"); return; } else if (table.Rows.Count == 0) { SqlCommand cmd = new SqlCommand(); cmd.CommandType = CommandType.Text; cmd.CommandText = "INSERT Users (UserLogin, UserPassword, UserName, UserSurname) VALUES (@login, @password, @name, @surname)"; cmd.Parameters.Add("@login", SqlDbType.VarChar).Value = loginField.Text; cmd.Parameters.Add("@password", SqlDbType.VarChar).Value = passwordField.Password.ToString(); cmd.Parameters.Add("@name", SqlDbType.VarChar).Value = nameField.Text; cmd.Parameters.Add("@surname", SqlDbType.VarChar).Value = surnamField.Text; cmd.Connection = myConnectionString; myConnectionString.Open(); cmd.ExecuteNonQuery(); myConnectionString.Close(); System.Windows.MessageBox.Show("Регистрация прошла успешно"); UserLoginWindow userLoginWindow = new UserLoginWindow(); userLoginWindow.Show(); this.Close(); } } }
private void AddButton_Click(object sender, RoutedEventArgs e) { if (login.Text != CheckUser.CheckUserLogin(login.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserLogin(login.Text)); return; } string mySelectQuery = "SELECT * FROM Users WHERE [UserLogin] = '" + login.Text + "'"; using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, myConnectionString)) { DataTable table = new DataTable(); dataAdapter.Fill(table); if (table.Rows.Count > 0) { System.Windows.MessageBox.Show("Этот логин занят. Введите другой"); return; } } if (password.Password.ToString() != CheckUser.CheckUserPassword(password.Password.ToString())) { System.Windows.MessageBox.Show(CheckUser.CheckUserPassword(password.Password.ToString())); return; } if (name.Text != CheckUser.CheckUserName(name.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserName(name.Text)); return; } if (surname.Text != CheckUser.CheckUserSurname(surname.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserSurname(surname.Text)); return; } string connectionString = @"Data Source=(local)\SQLEXPRESS; Initial Catalog=CEP_UPDATE; Integrated Security=True"; using (SqlConnection addRow = new SqlConnection(connectionString)) using (SqlCommand lastCommnd = addRow.CreateCommand()) { lastCommnd.CommandText = "INSERT INTO Users (UserLogin, UserPassword, UserName, UserSurname) VALUES (@login, @password, @name, @surname)"; lastCommnd.Parameters.AddWithValue("@login", login.Text); lastCommnd.Parameters.AddWithValue("@password", password.Password.ToString()); lastCommnd.Parameters.AddWithValue("@surname", surname.Text); lastCommnd.Parameters.AddWithValue("@name", name.Text); addRow.Open(); lastCommnd.ExecuteNonQuery(); addRow.Close(); } System.Windows.MessageBox.Show("Пользователь добавлен."); }
private void AddButton_Click(object sender, RoutedEventArgs e) { StreamReader file = new StreamReader("UserLogin.txt"); string login = file.ReadLine(); file.Close(); StreamReader usrNm = new StreamReader("UserName.txt"); string userNm = usrNm.ReadLine(); usrNm.Close(); StreamReader usrSnm = new StreamReader("UserSurname.txt"); string userSnm = usrSnm.ReadLine(); usrSnm.Close(); if (cardNumber.Text == string.Empty) { System.Windows.MessageBox.Show("Номер карты не может быть пустым."); return; } else if (cardNumber.Text.Length == 16) { char[] cardNumberArray = cardNumber.Text.ToCharArray(); for (int i = 0; i < cardNumberArray.Length; i++) { if (!char.IsDigit(cardNumberArray[i])) { System.Windows.MessageBox.Show("Вы указали неверные символы для номера карты. "); return; } } } else { System.Windows.MessageBox.Show("Вы неверно ввели номер карты."); return; } if (userName.Text != CheckUser.CheckUserName(userName.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserName(userName.Text)); return; } else { if (userName.Text != userNm) { System.Windows.MessageBox.Show("Имя на карте должно совпадать с именем пользователя."); return; } } if (userSurname.Text != CheckUser.CheckUserSurname(userSurname.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserSurname(userSurname.Text)); return; } else { if (userSurname.Text != userSnm) { System.Windows.MessageBox.Show("Фамилия на карте должна совпадать с фамилией пользователя."); return; } } if (cardExpiration.Text == string.Empty) { System.Windows.MessageBox.Show("Дата действия карты не может быть пустым."); return; } else { if (!Regex.IsMatch(cardExpiration.Text, @"(01|02|03|04|05|06|07|08|09|10|11|12)/2[2-9]$")) { System.Windows.MessageBox.Show("Вы указали неверную дату."); return; } } if (CVVCode.Text == string.Empty) { System.Windows.MessageBox.Show("CVV код карты не может быть пустым."); return; } else if (CVVCode.Text.Length == 3) { char[] cvvCodeArray = CVVCode.Text.ToCharArray(); for (int i = 0; i < cvvCodeArray.Length; i++) { if (!char.IsDigit(cvvCodeArray[i])) { System.Windows.MessageBox.Show("Вы указали неверные символы для CVV кода карты. "); return; } } } else { System.Windows.MessageBox.Show("Вы неверно ввели CVV код. CVV код - трехзначиное число."); return; } Random rnd = new Random(); double money = rnd.Next(100, 2500); SqlConnection myConnectionString = new SqlConnection(connectionString); string mySelectQuery = "SELECT * FROM BankCard WHERE Cardnumber = '" + cardNumber.Text + "'"; using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, myConnectionString)) { DataTable table = new DataTable(); dataAdapter.Fill(table); if (table.Rows.Count > 0) { System.Windows.MessageBox.Show("Это карта уже есть была привязана другим пользователем."); } else if (table.Rows.Count == 0) { SqlCommand cmd = new SqlCommand(); cmd.CommandType = CommandType.Text; cmd.CommandText = "INSERT BankCard (UserCode, CardNumber, UserSurname, UserName, ValidDate, CVVCode, UserMoney, CurrencyBuyCode, CurrencySellCode) VALUES ((SELECT UserCode FROM Users WHERE UserLogin = '******'),'" + cardNumber.Text + "', '" + userSurname.Text + "', '" + userName.Text + "', '" + cardExpiration.Text + "', " + Convert.ToInt32(CVVCode.Text) + ", '" + money + "', 1, 1)"; cmd.Connection = myConnectionString; myConnectionString.Open(); cmd.ExecuteNonQuery(); myConnectionString.Close(); System.Windows.MessageBox.Show("Карта добавлена!"); UserMenu userMenu = new UserMenu(); userMenu.Show(); this.Close(); } } }
private void SaveChanges(object sender, RoutedEventArgs e) { SqlConnection connection = new SqlConnection(connectionString); connection.Open(); if (criterion.Text != string.Empty && searchCriterion.Text != string.Empty) { int uC = Convert.ToInt32(searchCriterion.Text); if (criterion.Text == "Логин") { if (changingCriterion.Text != CheckUser.CheckUserLogin(changingCriterion.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserLogin(changingCriterion.Text)); return; } string mySelectQuery = "SELECT UserLogin FROM Users WHERE [UserLogin] = '" + changingCriterion.Text + "'"; using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, connection)) { DataTable table = new DataTable(); dataAdapter.Fill(table); if (table.Rows.Count > 0) { System.Windows.MessageBox.Show("Этот логин занят. Введите другой"); return; } else if (table.Rows.Count == 0) { using (SqlCommand lastCommnd = connection.CreateCommand()) { lastCommnd.CommandText = "UPDATE Users SET UserLogin = @login WHERE UserCode = @code"; lastCommnd.Parameters.AddWithValue("@login", changingCriterion.Text); lastCommnd.Parameters.AddWithValue("@code", uC); lastCommnd.ExecuteNonQuery(); } } } } else if (criterion.Text == "Пароль") { if (changingCriterion.Text != CheckUser.CheckUserPassword(changingCriterion.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserPassword(changingCriterion.Text)); return; } using (SqlCommand lastCommnd = connection.CreateCommand()) { lastCommnd.CommandText = "UPDATE Users SET UserPassword = @password WHERE UserCode = @code"; lastCommnd.Parameters.AddWithValue("@password", changingCriterion.Text); lastCommnd.Parameters.AddWithValue("@code", uC); lastCommnd.ExecuteNonQuery(); } } else if (criterion.Text == "Статус администратора") { if (changingCriterion.Text != CheckUser.CheckUserStatus(changingCriterion.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserStatus(changingCriterion.Text)); return; } using (SqlCommand lastCommnd = connection.CreateCommand()) { lastCommnd.CommandText = "UPDATE Users SET AdministratorStatus = @status WHERE UserCode = @code"; lastCommnd.Parameters.AddWithValue("@status", changingCriterion.Text); lastCommnd.Parameters.AddWithValue("@code", uC); lastCommnd.ExecuteNonQuery(); } } else if (criterion.Text == "Имя") { if (changingCriterion.Text != CheckUser.CheckUserName(changingCriterion.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserName(changingCriterion.Text)); return; } using (SqlCommand lastCommnd = connection.CreateCommand()) { lastCommnd.CommandText = "UPDATE Users SET UserName = @name WHERE UserCode = @code"; lastCommnd.Parameters.AddWithValue("@name", changingCriterion.Text); lastCommnd.Parameters.AddWithValue("@code", uC); lastCommnd.ExecuteNonQuery(); } } else if (criterion.Text == "Фамилия") { if (changingCriterion.Text != CheckUser.CheckUserSurname(changingCriterion.Text)) { System.Windows.MessageBox.Show(CheckUser.CheckUserSurname(changingCriterion.Text)); return; } using (SqlCommand lastCommnd = connection.CreateCommand()) { lastCommnd.CommandText = "UPDATE Users SET UserSurname = @surname WHERE UserCode = @code"; lastCommnd.Parameters.AddWithValue("@surname", changingCriterion.Text); lastCommnd.Parameters.AddWithValue("@code", uC); lastCommnd.ExecuteNonQuery(); } } } else { System.Windows.MessageBox.Show("Вы не выбрали данные для изменения."); return; } MessageBoxResult mboxResult = System.Windows.MessageBox.Show("Данные обновлены. Желаете изменить что-нибудь еще?", "Предупреждение", MessageBoxButton.YesNo); if (mboxResult == MessageBoxResult.No) { ChangeUserData changeUserData = new ChangeUserData(); changeUserData.Show(); this.Close(); } connection.Close(); }