public static int InsertExUser(ExternalUser user)
{
string sql = "INSERT INTO ExternalUser VALUES(@username,@password,@blocked)";
DbParameter par1 = Database.AddParameter(CONNECTIONSTRING, "@username", user.Username);
DbParameter par2 = Database.AddParameter(CONNECTIONSTRING, "@password", user.Password);
DbParameter par3 = Database.AddParameter(CONNECTIONSTRING, "@blocked", user.Blocked);
DbParameter[] parameters = { par1, par2, par3 };
int affected = Database.ModifyData(CONNECTIONSTRING, sql, parameters);
return affected;
}
public static List<ExternalUser> GetUsers()
{
List<ExternalUser> Users = new List<ExternalUser>();
string sql = "SELECT * FROM ExternalUser";
DbDataReader reader = Database.GetData(CONNECTIONSTRING, sql);
while(reader.Read())
{
ExternalUser user = new ExternalUser()
{
Username = reader["UserName"].ToString(),
Password = reader["Password"].ToString(),
Blocked = (bool)reader["Blocked"]
};
Users.Add(user);
}
return Users;
}
public static ExternalUser CheckCredentials(string Username, string Password)
{
ExternalUser USER = null;
string sql = "SELECT * FROM ExternalUser WHERE Username=@username AND Password=@password";
DbParameter par1 = Database.AddParameter(CONNECTIONSTRING, "@username", Username);
DbParameter par2 = Database.AddParameter(CONNECTIONSTRING, "@password", Password);
DbParameter[] parameters = { par1, par2 };
DbDataReader reader = Database.GetData(CONNECTIONSTRING, sql, parameters);
while (reader.Read())
{
ExternalUser user = new ExternalUser()
{
Username = reader["UserName"].ToString(),
Password = reader["Password"].ToString(),
Blocked = (bool)reader["Blocked"]
};
USER = user;
}
return USER;
}
