public bool LogInProcess(ref int id, string login, string password) /* Sign in - true if you can */ { HashPassword hsp = new HashPassword(); foreach (UserLoginAndPassword user in userLoginAndPassword) { if (user.GetLogin() == login) { string passwordDataBase = user.GetPassword(); string passwordTextBox = hsp.GenerateSHA256Hash(password, user.GetSalt()); if (user.GetPassword() == passwordTextBox) { id = user.GetId(); return(true); } } } return(false); }
/* private int GetUserId() * { * UserData user = new UserData(); * * SqlConnection con = new SqlConnection(@"Data Source = (local)\SQLEXPRESS; Initial Catalog = SysWal; Integrated Security = True"); * // string command = "select * from UserData where UserId =" + id; * string command = "SELECT @@IDENTITY"; * SqlCommand myCommand = new SqlCommand(command, con); * * con.Open(); * SqlDataReader myReader = myCommand.ExecuteReader(); * * * return id; * } */ private void AddNewUser(ref bool check) { HashPassword hsp = new HashPassword(); ReadAndUpdateData r = new ReadAndUpdateData(); UserData userData = new UserData(); string salt = hsp.CreateSalt(10); user = CreateUser(ref check, salt); if (check == true) { con = new SqlConnection(@"Data Source=(local)\SQLEXPRESS;Initial Catalog=SysWal;Integrated Security=True"); con.Open(); cmd = new SqlCommand("INSERT INTO UserData (login, password, name, surname, PESEL, accountNo, email, salt) values (@login, @password, @name, @surname, @PESEL, @accountNo, @email, @salt)", con); cmd.Parameters.AddWithValue("@login", user.GetLogin()); cmd.Parameters.AddWithValue("@password", hsp.HashUserPassword(user.GetPassword(), salt)); cmd.Parameters.AddWithValue("@name", user.GetName()); cmd.Parameters.AddWithValue("@surname", user.GetSurname()); cmd.Parameters.AddWithValue("@PESEL", user.GetPESEL()); cmd.Parameters.AddWithValue("@accountNo", user.GetAccountNo()); cmd.Parameters.AddWithValue("@email", user.GetEmail()); cmd.Parameters.AddWithValue("@salt", user.GetSalt()); cmd.ExecuteNonQuery(); string command = "SELECT MAX(UserID)FROM UserData"; SqlCommand myCommand = new SqlCommand(command, con); int id = (int)myCommand.ExecuteScalar(); SendMail sm = new SendMail(); MessageBox.Show(sm.MailSend(user.GetEmail(), user.GetName())); r.CreateWallet(id); MessageBox.Show("Rejestracja zakończona pomyslnie!"); } else { MessageBox.Show("Niepoprawne Dane!"); } }
private UserData CreateUser(ref bool check, string salt) { // UserData user(loginText.Text, passwordText.Text, nameText.Text, surnameText.Text, PESELText.Text, accountNoText.Text, emailText.Text, 0) user = new UserData(); HashPassword hsp = new HashPassword(); bool check2 = true; user.SetLogin(loginText.Text); user.SetPassword(passwordText.Text); user.SetName(nameText.Text); user.SetSurname(surnameText.Text); user.SetPESEL(PESELText.Text); user.SetAccountNo(accountNoText.Text); user.SetEmail(emailText.Text); if (user.CheckLogin() == false) { loginText.BackColor = Color.Red; check2 = false; } else { loginText.BackColor = Color.White; } if (user.CheckPassword() == false) { passwordText.BackColor = Color.Red; check2 = false; } else { passwordText.BackColor = Color.White; } if (user.CheckName() == false) { nameText.BackColor = Color.Red; check2 = false; } else { nameText.BackColor = Color.White; } if (user.CheckSurname() == false) { surnameText.BackColor = Color.Red; check2 = false; } else { surnameText.BackColor = Color.White; } if (user.CheckPESEL() == false) { PESELText.BackColor = Color.Red; check2 = false; } else { PESELText.BackColor = Color.White; } if (user.CheckAccountNo() == false) { accountNoText.BackColor = Color.Red; check2 = false; } else { accountNoText.BackColor = Color.White; } if (user.CheckEmail() == false) { emailText.BackColor = Color.Red; check2 = false; } else { emailText.BackColor = Color.White; } if (check2 == true) { user.SetSalt(salt); check = true; } return(user); }