private void LoginCick() { SqlCommand cmd = new SqlCommand( "Select Username,Password from Login Where Username = @username COLLATE SQL_Latin1_General_CP1_CS_AS" + " and Password = @pass COLLATE SQL_Latin1_General_CP1_CS_AS", sqlcon); cmd.Parameters.Clear(); cmd.Parameters.AddWithValue("@username", txtUsername.Text.Trim()); cmd.Parameters.AddWithValue("@pass", txtPassword.Text.Trim()); sqlcon.Open(); try { if (!string.IsNullOrEmpty(Convert.ToString(cmd.ExecuteScalar()))) { GlobalVariable.Username = txtUsername.Text.Trim(); LoginProgressbar loginprogress = new LoginProgressbar(); this.Hide(); loginprogress.Show(); } else { MessageBox.Show("Incorrect Username/Password"); } } catch (Exception ex) { MessageBox.Show(ex.Message); } sqlcon.Close(); }
private void LoginCick() { SqlCommand cmd = new SqlCommand( "Select EmployeeID_fk from Login Where Username = @username COLLATE SQL_Latin1_General_CP1_CS_AS" + " and Password = @pass COLLATE SQL_Latin1_General_CP1_CS_AS", sqlcon); cmd.Parameters.Clear(); cmd.Parameters.AddWithValue("@username", txtUsername.Text.Trim()); cmd.Parameters.AddWithValue("@pass", txtPassword.Text.Trim()); if (sqlcon.State != ConnectionState.Open) { sqlcon.Open(); } if (isNewAccount) { ChangePassword(); } else { try { if (!string.IsNullOrEmpty(Convert.ToString(cmd.ExecuteScalar()))) { GlobalVariable.EmployeeID = Convert.ToInt32(cmd.ExecuteScalar()); if (txtPassword.Text.Trim() == "1234") { MessageBox.Show("You need to change your password"); pictureBox4.Visible = true; txt_PasswordConfirm.Visible = true; btn_Login.Location = new Point(54, 395); isNewAccount = true; txtPassword.Text = string.Empty; } else { LoginProgressbar loginprogress = new LoginProgressbar(); loginprogress.Show(); this.Hide(); } } else { MessageBox.Show("Incorrect Username/Password"); } } catch (Exception ex) { MessageBox.Show(ex.Message); } } sqlcon.Close(); }