예제 #1
0
        public static Boolean IsCorrectUsernameAndPassword(String username, String password)
        {
            Boolean result = true;

            try
            {
                String    sql = String.Format("SELECT * FROM Employees WHERE employee_id = '{0}' AND password = '******' ", username, SecuritySupport.Encrypt(password));
                DataTable dt  = DataSupport.RunDataSet(sql).Tables[0];
                if (dt.Rows.Count == 0)
                {
                    throw new Exception();
                }
                else
                {
                    userType = dt.Rows[0]["userType"].ToString();
                }
            }
            catch (Exception)
            {
                result = false;
            }


            return(result);
        }
예제 #2
0
        public static String GetNextMenuCodeInt(String menu)
        {
            String result = "";

            DataSet ds         = DataSupport.RunDataSet(String.Format("SELECT menu_current FROM TMENU WHERE menu_id = '{0}' ", menu) + UpdateMenuCode(menu));
            String  next_value = ds.Tables[0].Rows[0][0].ToString();

            result = GetTMSCode() + "-" + menu + "-" + next_value;
            return(result);
        }
예제 #3
0
        public static String GetNextMenuCode(String menu, String menu_prefix)
        {
            String result      = "";
            String building_id = "WEB";

            DataSet ds         = DataSupport.RunDataSet(String.Format("SELECT menu_current FROM TMENU WHERE menu_id = '{0}' ", menu));
            String  next_value = ds.Tables[0].Rows[0][0].ToString();

            result = String.Format("{0}-{1}-{2}", building_id, menu_prefix, next_value);
            return(result);
        }
예제 #4
0
        public static Boolean IsCorrectUsernameAndPassword(String username, String password)
        {
            Boolean result = true;

            try
            {
                username = username.EscapeString();
                password = password.EscapeString();
                String    sql = String.Format("SELECT employee_id FROM Employees WHERE employee_id = '{0}' AND password = '******' ", username, SecuritySupport.GetSHA1Digest(password));
                DataTable dt  = DataSupport.RunDataSet(sql).Tables[0];
                if (dt.Rows.Count == 0)
                {
                    throw new Exception();
                }
            }
            catch (Exception)
            {
                result = false;
            }


            return(result);
        }