public bool ResetPassword(string ID, string OldPassword, string NewPassword)
{
OldPassword = CDB.SHA512(OldPassword);
NewPassword = CDB.SHA512(NewPassword);
NewCmd();
Cmd.CommandText = "update TblUsers set Password = @NewPassword where ID = @ID and Password = @OldPassword";
Cmd.Parameters.AddWithValue("@NewPassword", NewPassword);
Cmd.Parameters.AddWithValue("@ID", ID);
Cmd.Parameters.AddWithValue("@OldPassword", OldPassword);
int Update;
try
{
Con.Open();
Update = Cmd.ExecuteNonQuery();
}
catch (Exception ex)
{
XtraMessageBox.Show(ex.Message);
return(false);
}
finally { Con.Close(); }
return(Update == 1);
}
public bool SaveUser(string Name, string UserName, string Password, string GroupID)
{
Password = CDB.SHA512(Password);
NewCmd();
Cmd.CommandText = @"insert into TblUsers (Name, UserName, Password, UserGroupID, InsertedDate, InsertedUser)
values (@Name, @UserName, @Password, @UserGroupID, @InsertedDate, @InsertedUser)";
Cmd.Parameters.AddWithValue("@Name", Name);
Cmd.Parameters.AddWithValue("@UserName", UserName);
Cmd.Parameters.AddWithValue("@Password", Password);
Cmd.Parameters.AddWithValue("@UserGroupID", GroupID);
Cmd.Parameters.AddWithValue("@InsertedDate", DateTime.Now);
Cmd.Parameters.AddWithValue("@InsertedUser", Program.UserID);
try
{
Con.Open();
Cmd.ExecuteNonQuery();
}
catch (Exception ex)
{
XtraMessageBox.Show(ex.Message);
return(false);
}
finally { Con.Close(); }
CLog.AddLog("TblUsers", "Add New User " + Name + " Username " + UserName + " Group ID " + GroupID);
return(true);
}
public DataTable Login(string UserName, string Password)
{
NewCmd();
Cmd.CommandText = "select * from TblUsers where UserName = @Name and Password = @Password";
Cmd.Parameters.AddWithValue("@Name", UserName);
Cmd.Parameters.AddWithValue("@Password", CDB.SHA512(Password));
//Cmd.Parameters.AddWithValue("@Password", Password);
FillDT();
return(DT);
}
