bool ValidateEmplpyee(TblEmployeesDTO e)
{
if (e.idEmployee.Trim().Length == 0)
{
System.Windows.Forms.MessageBox.Show("username can't empty!!", "Error");
return(false);
}
if (e.name.Trim().Length == 0)
{
System.Windows.Forms.MessageBox.Show("Name can't empty!!", "Error");
return(false);
}
if (e.password.Trim().Length == 0)
{
System.Windows.Forms.MessageBox.Show("Password can't empty!!", "Error");
return(false);
}
if (e.role.Trim().Length == 0)
{
System.Windows.Forms.MessageBox.Show("Role can't empty!!", "Error");
return(false);
}
return(true);
//if (e.status.Trim().Length == 0)
//{
// System.Windows.Forms.MessageBox.Show("status can't empty!!", "Error");
// return false;
//}
//return true;
}
public bool UpdateEmployee(TblEmployeesDTO emp)
{
SqlConnection connection = null;
SqlDataReader sqlDataReader = null;
bool result = false;
try
{
connection = DBUtil.MakeConnect();
if (connection != null)
{
String sql = "UPDATE tblEmployees " +
"SET name=@name, password=@password, role=@role, status=@status " +
"WHERE idEmployee=@idEmployee";
SqlCommand sqlCommand = new SqlCommand(sql, connection);
sqlCommand.Parameters.AddWithValue("@password", emp.password);
sqlCommand.Parameters.AddWithValue("@name", emp.name);
sqlCommand.Parameters.AddWithValue("@role", emp.role);
sqlCommand.Parameters.AddWithValue("@status", emp.status);
sqlCommand.Parameters.AddWithValue("@idEmployee", emp.idEmployee);
//sqlDataReader = sqlCommand.ExecuteReader(CommandBehavior.CloseConnection);
result = sqlCommand.ExecuteNonQuery() > 0;
}
}
catch (SqlException e) { throw new Exception(e.Message); }
finally
{
DBUtil.CloseConnection(sqlDataReader, connection);
}
return(result);
}
public bool UpdateEmployeeDetail(TblEmployeesDTO emp)
{
SqlConnection cn = null;
SqlCommand cmd = null;
string sql = "UPDATE tblEmployees "
+ "SET name = @name, password = @pwd "
+ "WHERE idEmployee = @id ";
try
{
cn = DBUtil.MakeConnect();
if (cn != null)
{
cmd = new SqlCommand(sql, cn);
cmd.Parameters.AddWithValue("@name", emp.name);
cmd.Parameters.AddWithValue("@pwd", emp.password);
cmd.Parameters.AddWithValue("@id", emp.idEmployee);
return(cmd.ExecuteNonQuery() > 0);
}
}
catch (SqlException e)
{
throw new Exception(e.Message);
}
finally
{
DBUtil.CloseConnection(null, cn);
}
return(false);
}
public frmWarehouse_V2(frmLogin loginFrame, TblEmployeesDTO emp)
{
InitializeComponent();
this.loginFrame = loginFrame;
this.emp = emp;
warehousePresenter = new WarehousePresenter(this);
}
public frmSaleManager_V2(frmLogin loginFrame, TblEmployeesDTO emp)
{
InitializeComponent();
saleManagerPresenter = new SaleManagerPresenter(this);
this.loginFrame = loginFrame;
this.emp = emp;
msTool.Text = "User: " + emp.name;
saleManagerPresenter.LoadProducts();
saleManagerPresenter.LoadCustomers();
}
public bool UpdateEmployee(TblEmployeesDTO Employee)
{
HttpResponseMessage responseMessage = ApiConnection.loadPostJsonObject("employee/UpdateEmployee", Employee, Program.TokenGlobal);
if (responseMessage.IsSuccessStatusCode)
{
var employeeDTO = responseMessage.Content.ReadAsStringAsync();
bool result = JsonConvert.DeserializeObject <bool>(employeeDTO.Result);
return(result);
}
return(false);
}
public bool UpdateEmpDetail(TblEmployeesDTO model)
{
HttpResponseMessage responseMessage = ApiConnection.loadPostJsonObject("employee/UpdateEmpDetail", model, Program.TokenGlobal);
if (responseMessage.StatusCode != HttpStatusCode.Unauthorized)
{
//get json content
var body = responseMessage.Content.ReadAsStringAsync();
bool result = JsonConvert.DeserializeObject <bool>(body.Result);
return(result);
}
return(false);
}
public void saveEmployee(frmEmployeeDetail detail)
{
TblEmployeesDTO emp = new TblEmployeesDTO();
emp.idEmployee = detail.getUserName();
emp.name = detail.getFullName();
emp.password = detail.getPassword();
emp.role = detail.getRole().Trim();
bool status = true;
if (detail.getStatus().Trim().Equals("True"))
{
status = true;
}
else
{
status = false;
}
emp.status = status;
bool validate = ValidateEmplpyee(emp);
if (validate)
{
if (!detail.getIsUpdate())
{
if (model.InsertEmployee(emp))
{
MessageBox.Show(MessageUtil
.SAVE_SUCCESS);
}
else
{
MessageBox.Show(MessageUtil.ERROR + " add Employee");
}
}
else
{
if (model.UpdateEmployee(emp))
{
MessageBox.Show(MessageUtil
.SAVE_SUCCESS);
}
else
{
MessageBox.Show(MessageUtil.ERROR + " update Employee");
}
}
}
}
public bool UpdateEmpDetail(frmMyProfileDetailcs form)
{
TblEmployeesDTO emp = new TblEmployeesDTO {
name = form.getTxtName(),
password = form.getTxtPassword(),
};
bool isSuccess = checkField(emp);
if (isSuccess)
{
return(model.UpdateEmpDetail(emp));//return true if update sucess
}
return(false);
}
public TblEmployeesDTO checkLogin(TblEmployeesDTO tblEmployeeDTO)
{
HttpResponseMessage responseMessage = ApiConnection.loadPostJsonObjectLogin("login", tblEmployeeDTO);
if (responseMessage.StatusCode != System.Net.HttpStatusCode.Unauthorized)
{
var employeeDTO = responseMessage.Content.ReadAsStringAsync();
IEnumerable <string> token = responseMessage.Headers.GetValues("token");
Program.TokenGlobal = token.FirstOrDefault();
TblEmployeesDTO emp = JsonConvert.DeserializeObject <TblEmployeesDTO>(employeeDTO.Result);
return(emp);
}
return(null);
}
public bool checkField(TblEmployeesDTO emp)
{
if (emp.name.Trim().Length == 0)
{
System.Windows.Forms.MessageBox.Show("Name can't empty!!", "Error");
return(false);
}
if (emp.password.Trim().Length == 0)
{
System.Windows.Forms.MessageBox.Show("Password can't empty!!", "Error");
return(false);
}
return(true);
}
public static string GenerateJSONWebToken(TblEmployeesDTO employeesDTO, IConfiguration _config)
{
var credentials = GetCredentials(_config);
var permClaims = new List <Claim>();
permClaims.Add(new Claim("idEmployee", employeesDTO.idEmployee));
permClaims.Add(new Claim("role", employeesDTO.role));
var token = new JwtSecurityToken(_config["Jwt:Issuer"],
_config["Jwt:Issuer"],
permClaims,
expires: DateTime.Now.AddMinutes(1440),
signingCredentials: credentials);
return(new JwtSecurityTokenHandler().WriteToken(token));
}
public TblEmployeesDTO CheckLogin(string idEmployee, string password)
{
SqlConnection connection = null;
SqlDataReader sqlDataReader = null;
try
{
connection = DBUtil.MakeConnect();
if (connection != null)
{
String sql = "Select idEmployee, password, name, role, status " +
"From tblEmployees " +
"Where idEmployee = @idEmployee and password = @password ";
SqlCommand sqlCommand = new SqlCommand(sql, connection);
sqlCommand.Parameters.AddWithValue("@idEmployee", idEmployee);
sqlCommand.Parameters.AddWithValue("@password", password);
sqlDataReader = sqlCommand.ExecuteReader(CommandBehavior.CloseConnection);
if (sqlDataReader.Read())
{
string idEmployeeCompare = sqlDataReader.GetString("idEmployee");
string passwordCompare = sqlDataReader.GetString("password");
if (idEmployeeCompare.Equals(idEmployee) && passwordCompare.Equals(password))
{
TblEmployeesDTO emp = new TblEmployeesDTO()
{
idEmployee = sqlDataReader["idEmployee"].ToString(),
password = sqlDataReader["password"].ToString(),
name = sqlDataReader["name"].ToString(),
role = sqlDataReader["role"].ToString(),
status = bool.Parse(sqlDataReader["status"].ToString())
};
return(emp);
}
}
}
}
catch (SqlException e) { throw new Exception(e.Message); }
finally
{
DBUtil.CloseConnection(sqlDataReader, connection);
}
return(null);
}
public List <TblEmployeesDTO> loadEmp()
{
string sql = "select idEmployee, name, password, role, status " +
"from tblEmployees " +
"where role not like 'Manager'";
SqlConnection connection = null;
SqlDataReader reader = null;
SqlCommand cmd = null;
try
{
connection = DBUtil.MakeConnect();
if (connection != null)
{
cmd = new SqlCommand(sql, connection);
reader = cmd.ExecuteReader();
List <TblEmployeesDTO> list = new List <TblEmployeesDTO>();
while (reader.Read())
{
TblEmployeesDTO dto = new TblEmployeesDTO();
dto.idEmployee = reader["idEmployee"].ToString();
dto.name = reader["name"].ToString();
dto.password = reader["password"].ToString();
dto.role = reader["role"].ToString();
dto.status = bool.Parse(reader["status"].ToString());
list.Add(dto);
}
return(list);
}
}
catch (SqlException e)
{
throw new Exception(e.Message);
}
finally
{
DBUtil.CloseConnection(reader, connection);
}
return(null);
}
public List <TblEmployeesDTO> loadEmpByRole(string role)
{
SqlConnection connection = null;
SqlDataReader sqlDataReader = null;
SqlCommand sqlCommand = null;
string sql = "select idEmployee, name , password, role, status " +
"from tblEmployees " +
"where role = @role ";
try
{
connection = DBUtil.MakeConnect();
if (connection != null)
{
sqlCommand = new SqlCommand(sql, connection);
sqlCommand.Parameters.AddWithValue("@role", role);
sqlDataReader = sqlCommand.ExecuteReader();
List <TblEmployeesDTO> result = new List <TblEmployeesDTO>();
while (sqlDataReader.Read())
{
TblEmployeesDTO emp = new TblEmployeesDTO();
emp.idEmployee = sqlDataReader["idEmployee"].ToString();
emp.name = sqlDataReader["name"].ToString();
emp.password = sqlDataReader["password"].ToString();
emp.role = sqlDataReader["role"].ToString();
emp.status = bool.Parse(sqlDataReader["status"].ToString());
result.Add(emp);
}
return(result);
}
}
catch (SqlException e)
{
throw new Exception(e.Message);
}
finally
{
DBUtil.CloseConnection(sqlDataReader, connection);
}
return(null);
}
public IActionResult CheckLogin([FromBody] TblEmployeesDTO tblEmployeeDTO)
{
TblEmployeesDAO dao = TblEmployeesDAO.getInstance();
IActionResult response = Unauthorized();
try
{
TblEmployeesDTO dto = dao.CheckLogin(tblEmployeeDTO.idEmployee, tblEmployeeDTO.password);
if (dto != null)
{
string token = JwtUtil.GenerateJSONWebToken(dto, _config);
HttpContext.Response.Headers.Add("token", token);
response = Ok(dto);
}
return(response);
}
catch (Exception e)
{
Console.WriteLine(e.Message);
}
return(Unauthorized());
}
public IActionResult updateEmployee([FromBody] TblEmployeesDTO emp)
{
bool isValidToken = ValidateToken();
if (isValidToken)
{
TblEmployeesDAO dao = TblEmployeesDAO.getInstance();
try
{
bool success = dao.UpdateEmployeeDetail(emp);
if (success)
{
return(Ok(success));
}
}
catch (Exception)
{
StatusCode(500);
}
}
return(Unauthorized());
}
public IActionResult UpdateEmployee([FromBody] TblEmployeesDTO Employee)
{
bool isValidToken = ValidateToken();
if (isValidToken)
{
TblEmployeesDAO dao = TblEmployeesDAO.getInstance();
IActionResult response = Unauthorized();
try
{
bool result = dao.UpdateEmployee(Employee);
if (result == true)
{
return(Ok(result));
}
}
catch (Exception e)
{
Console.WriteLine(e.Message);
}
}
return(Unauthorized());
}
public bool checkLogin(frmLogin form)
{
string username = form.getUserName().Trim();
string password = form.getPassword().Trim();
TblEmployeesDTO tblEmployeesDTO = new TblEmployeesDTO();
tblEmployeesDTO.idEmployee = username;
tblEmployeesDTO.password = password;
TblEmployeesDTO emp = loginModel.checkLogin(tblEmployeesDTO);
if (emp != null)
{
string role = emp.role.ToUpper();
switch (role)
{
case "MANAGER":
frmManager_v2 manager = new frmManager_v2(form, emp);
manager.Show();
break;
case "WAREHOUSE STAFF":
frmWarehouse_V2 warehouse = new frmWarehouse_V2(form, emp);
warehouse.Show();
break;
case "SALESMAN":
frmSaleManager_V2 saleManager = new frmSaleManager_V2(form, emp);
saleManager.Show();
break;
}
form.Hide();
form.setUsername("");
form.setPassword("");
return(true);
}
return(false);
}
public frmManager_v2(frmLogin loginFrame, TblEmployeesDTO emp)
{
InitializeComponent();
this.loginFrame = loginFrame;
this.emp = emp;
presenter = new EmployeePresenter(this);
txtEmployeeID.Enabled = false;
txtFullname.Enabled = false;
txtPassword.Enabled = false;
txtRole.Enabled = false;
txtStatus.Enabled = false;
dgvListEmployee.ReadOnly = true;
txtCustomerID.Enabled = false;
txtCustomerName.Enabled = false;
txtAddress.Enabled = false;
txtPoint.Enabled = false;
txtPoint.Enabled = false;
txtPhonenumber.Enabled = false;
dgvCustomer.ReadOnly = true;
loadAll();
presenter.LoadCustomers();
presenter.LoadRevenues(datetimepicker.Value);
}
public void setmsTool(TblEmployeesDTO emp)
{
this.emp = emp;
msTool.Text = "User: " + emp.name;
}
public frmMyProfileDetailcs(TblEmployeesDTO emp)
{
InitializeComponent();
this.emp = emp;
loadEmpDetail();
}
