private void Button_Click(object sender, RoutedEventArgs e)
{
if (nameField.Text != CheckUser.CheckUserName(nameField.Text))
{
MessageBox.Show(CheckUser.CheckUserName(nameField.Text));
return;
}
if (surnamField.Text != CheckUser.CheckUserSurname(surnamField.Text))
{
MessageBox.Show(CheckUser.CheckUserSurname(surnamField.Text));
return;
}
if (loginField.Text != CheckUser.CheckUserLogin(loginField.Text))
{
MessageBox.Show(CheckUser.CheckUserLogin(loginField.Text));
return;
}
if (passwordField.Password.ToString() != CheckUser.CheckUserPassword(passwordField.Password.ToString()))
{
MessageBox.Show(CheckUser.CheckUserPassword(passwordField.Password.ToString()));
return;
}
string userLogin = loginField.Text;
string mySelectQuery = "SELECT * FROM Users WHERE [UserLogin] = '" + userLogin + "'";
using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, myConnectionString)) // проверяем, занят ли логин
{
DataTable table = new DataTable();
dataAdapter.Fill(table);
if (table.Rows.Count > 0)
{
MessageBox.Show("Этот логин занят. Введите другой");
return;
}
else if (table.Rows.Count == 0) // если логин не занят, записываем
{
SqlCommand cmd = new SqlCommand();
cmd.CommandType = CommandType.Text;
cmd.CommandText = "INSERT Users (UserLogin, UserPassword, UserName, UserSurname) VALUES (@login, @password, @name, @surname)";
cmd.Parameters.Add("@login", SqlDbType.VarChar).Value = loginField.Text;
cmd.Parameters.Add("@password", SqlDbType.VarChar).Value = passwordField.Password.ToString();
cmd.Parameters.Add("@name", SqlDbType.VarChar).Value = nameField.Text;
cmd.Parameters.Add("@surname", SqlDbType.VarChar).Value = surnamField.Text;
cmd.Connection = myConnectionString;
myConnectionString.Open();
cmd.ExecuteNonQuery();
myConnectionString.Close();
MessageBox.Show("Регистрация прошла успешно");
LoginForm loginForm = new LoginForm();
loginForm.Show();
this.Close();
}
}
}
private void AddButton_Click(object sender, RoutedEventArgs e)
{
if (login.Text != CheckUser.CheckUserLogin(login.Text))
{
MessageBox.Show(CheckUser.CheckUserLogin(login.Text));
return;
}
string mySelectQuery = "SELECT * FROM Users WHERE [UserLogin] = '" + login.Text + "'";
using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, myConnectionString)) // проверяем, занят ли логин
{
DataTable table = new DataTable();
dataAdapter.Fill(table);
if (table.Rows.Count > 0)
{
MessageBox.Show("Этот логин занят. Введите другой");
return;
}
}
if (password.Password.ToString() != CheckUser.CheckUserPassword(password.Password.ToString()))
{
MessageBox.Show(CheckUser.CheckUserPassword(password.Password.ToString()));
return;
}
if (name.Text != CheckUser.CheckUserName(name.Text))
{
MessageBox.Show(CheckUser.CheckUserName(name.Text));
return;
}
if (surname.Text != CheckUser.CheckUserSurname(surname.Text))
{
MessageBox.Show(CheckUser.CheckUserSurname(surname.Text));
return;
}
string connectionString = @"Data Source=(local)\SQLEXPRESS; Initial Catalog=StockRoom; Integrated Security=True";
using (SqlConnection addRow = new SqlConnection(connectionString))
using (SqlCommand lastCommnd = addRow.CreateCommand()) //здесь добавляем пользователя в систему
{
lastCommnd.CommandText = "INSERT INTO Users (UserLogin, UserPassword, UserName, UserSurname) VALUES (@login, @password, @name, @surname)";
lastCommnd.Parameters.AddWithValue("@login", login.Text);
lastCommnd.Parameters.AddWithValue("@password", password.Password.ToString());
lastCommnd.Parameters.AddWithValue("@surname", surname.Text);
lastCommnd.Parameters.AddWithValue("@name", name.Text);
addRow.Open();
lastCommnd.ExecuteNonQuery();
addRow.Close();
}
MessageBox.Show("Пользователь добавлен.");
}
private void Button_Click(object sender, RoutedEventArgs e)
{
if (loginField.Text != CheckUser.CheckUserLogin(loginField.Text))
{
MessageBox.Show(CheckUser.CheckUserLogin(loginField.Text));
return;
}
if (passwordField.Password.ToString() != CheckUser.CheckUserPassword(passwordField.Password.ToString()))
{
MessageBox.Show(CheckUser.CheckUserPassword(passwordField.Password.ToString()));
return;
}
string userLogin = loginField.Text;
string userPassword = passwordField.Password.ToString();
string myConnectionString = @"Data Source=(local)\SQLEXPRESS; Initial Catalog=StockRoom; Integrated Security=True";
string mySelectQuery = "SELECT * FROM Users WHERE [UserLogin] = '" + userLogin + "'and [UserPassword]='" + userPassword + "' and [AdministratorState] = 'false'";
using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, myConnectionString)) // проверка введенных данных
{
DataTable table = new DataTable();
dataAdapter.Fill(table);
if (table.Rows.Count > 0)
{
StreamWriter loginFile = new StreamWriter("UserLogin.txt");
loginFile.Write(userLogin);
loginFile.Close();
MainMenuUser mainMenu = new MainMenuUser();
mainMenu.Show();
this.Close();
}
else if (table.Rows.Count == 0)
{
MessageBox.Show("Неверный логин или пароль");
return;
}
}
}
private void SaveChanges(object sender, RoutedEventArgs e)
{
SqlConnection connection = new SqlConnection(connectionString);
connection.Open();
if (criterion.Text != string.Empty && searchCriterion.Text != string.Empty)
{
int uC = Convert.ToInt32(searchCriterion.Text);
if (criterion.Text == "Логин")
{
if (changingCriterion.Text != CheckUser.CheckUserLogin(changingCriterion.Text))
{
MessageBox.Show(CheckUser.CheckUserLogin(changingCriterion.Text));
return;
}
string mySelectQuery = "SELECT UserLogin FROM Users WHERE [UserLogin] = '" + changingCriterion.Text + "'";
using (SqlDataAdapter dataAdapter = new SqlDataAdapter(mySelectQuery, connection)) // проверка логина на занятость
{
DataTable table = new DataTable();
dataAdapter.Fill(table);
if (table.Rows.Count > 0)
{
MessageBox.Show("Этот логин занят. Введите другой");
return;
}
else if (table.Rows.Count == 0)
{
using (SqlCommand lastCommnd = connection.CreateCommand()) // обновляем данные
{
lastCommnd.CommandText = "UPDATE Users SET UserLogin = @login WHERE UserCode = @code";
lastCommnd.Parameters.AddWithValue("@login", changingCriterion.Text);
lastCommnd.Parameters.AddWithValue("@code", uC);
lastCommnd.ExecuteNonQuery();
}
}
}
}
else if (criterion.Text == "Пароль")
{
if (changingCriterion.Text != CheckUser.CheckUserPassword(changingCriterion.Text))
{
MessageBox.Show(CheckUser.CheckUserPassword(changingCriterion.Text));
return;
}
using (SqlCommand lastCommnd = connection.CreateCommand()) // обновляем данные
{
lastCommnd.CommandText = "UPDATE Users SET UserPassword = @password WHERE UserCode = @code";
lastCommnd.Parameters.AddWithValue("@password", changingCriterion.Text);
lastCommnd.Parameters.AddWithValue("@code", uC);
lastCommnd.ExecuteNonQuery();
}
}
else if (criterion.Text == "Статус администратора")
{
if (changingCriterion.Text != CheckUser.CheckUserStatus(changingCriterion.Text))
{
MessageBox.Show(CheckUser.CheckUserStatus(changingCriterion.Text));
return;
}
using (SqlCommand lastCommnd = connection.CreateCommand()) // обновляем данные
{
lastCommnd.CommandText = "UPDATE Users SET AdministratorState = @status WHERE UserCode = @code";
lastCommnd.Parameters.AddWithValue("@status", changingCriterion.Text);
lastCommnd.Parameters.AddWithValue("@code", uC);
lastCommnd.ExecuteNonQuery();
}
}
else if (criterion.Text == "Имя")
{
if (changingCriterion.Text != CheckUser.CheckUserName(changingCriterion.Text))
{
MessageBox.Show(CheckUser.CheckUserName(changingCriterion.Text));
return;
}
using (SqlCommand lastCommnd = connection.CreateCommand()) // обновляем данные
{
lastCommnd.CommandText = "UPDATE Users SET UserName = @name WHERE UserCode = @code";
lastCommnd.Parameters.AddWithValue("@name", changingCriterion.Text);
lastCommnd.Parameters.AddWithValue("@code", uC);
lastCommnd.ExecuteNonQuery();
}
}
else if (criterion.Text == "Фамилия")
{
if (changingCriterion.Text != CheckUser.CheckUserSurname(changingCriterion.Text))
{
MessageBox.Show(CheckUser.CheckUserSurname(changingCriterion.Text));
return;
}
using (SqlCommand lastCommnd = connection.CreateCommand()) // обновляем данные
{
lastCommnd.CommandText = "UPDATE Users SET UserSurname = @surname WHERE UserCode = @code";
lastCommnd.Parameters.AddWithValue("@surname", changingCriterion.Text);
lastCommnd.Parameters.AddWithValue("@code", uC);
lastCommnd.ExecuteNonQuery();
}
}
}
else
{
MessageBox.Show("Вы не выбрали данные для изменения.");
return;
}
MessageBoxResult mboxResult = MessageBox.Show("Данные обновлены. Желаете изменить что-нибудь еще?", "Предупреждение", MessageBoxButton.YesNo);
if (mboxResult == MessageBoxResult.No)
{
ChangeUsersData changeUsersData = new ChangeUsersData();
changeUsersData.Show();
this.Close();
}
connection.Close();
}
