protected void btnLogin_Click(object sender, EventArgs e)
{
SAS.Business.User bizUser = new Business.User();
SAS.Entity.User user = null;
MessageBox message = new MessageBox();
lblMessage.Text = string.Empty;
lblMessage.Visible = false;
message = bizUser.Authenticate(txtUserName.Text, txtPassword.Text);
if (message.Type == MessageType.Success && message.Entity != null)
{
user = (Entity.User)message.Entity;
Session["USER_ID"] = user.Id;
Session["LOGIN_ID"] = user.LoginId;
Session["USER_NAME"] = user.UserName;
Response.Redirect("~/Forms/Masters/Employee.aspx");
}
else
{
Session.RemoveAll();
wmbLogin.SetMessage(message);
}
}
public MessageBox Authenticate(string loginId, string password)
{
try
{
MessageBox message = new MessageBox();
Entity.User validUser = null;
Data.UserAuthentication userAuthentication = new Data.UserAuthentication();
DataSet userData = new DataSet();
userData = userAuthentication.Authenticate(loginId, password);
if (userData != null && userData.Tables.Count > 0 && userData.Tables[0].Rows.Count > 0)
{
DataRow userRow = userData.Tables[0].Rows[0];
validUser = new Entity.User();
validUser.Id = Convert.ToInt32(userRow["id"]);
validUser.LoginId = userRow["login_id"].ToString();
validUser.Password = userRow["password"].ToString();
validUser.UserName = userRow["user_name"].ToString();
validUser.InvalidLoginAttempts = Convert.ToInt32(userRow["invalid_login_attempts"]);
validUser.IsLocked = Convert.ToBoolean(userRow["is_locked"]);
if (validUser.IsLocked)
{
message.Type = MessageType.Warning;
message.MessageTitle = "Your account has been lcoked. Please contact System Administrator.";
}
else if (!validUser.IsLocked && !validUser.Password.Equals(password))
{
message.Type = MessageType.Warning;
message.MessageTitle = "Invalid Authentication. You are left with only " + (4 - validUser.InvalidLoginAttempts) + " attempts.";
}
else if (validUser.Password.Equals(password))
{
message.Entity = validUser;
message.Type = MessageType.Success;
message.MessageTitle = "Authentication done successfully.";
}
else
{
message.Type = MessageType.Failure;
message.MessageTitle = "Invalid Authentication. Please re-login with valid Login Id and Password.";
}
}
else
{
message.Type = MessageType.Failure;
message.MessageTitle = "Invalid Authentication. Please re-login with valid Login Id and Password.";
}
return message;
}
catch
{
throw;
}
}
public void SetMessage(MessageBox message)
{
lblMessageTitle.Text = message.MessageTitle;
switch (message.Type)
{
case MessageType.Success:
pnlWebMessageBox.CssClass = "message-box message-success";
divIcon.Attributes["class"] = "message-icon message-icon-success";
break;
case MessageType.Failure:
pnlWebMessageBox.CssClass = "message-box message-failure";
divIcon.Attributes["class"] = "message-icon message-icon-failure";
break;
case MessageType.Warning:
pnlWebMessageBox.CssClass = "message-box message-warning";
divIcon.Attributes["class"] = "message-icon message-icon-warning";
break;
}
}
