Exemplo n.º 1
0
        public NWUpdateAccount(int theEmployeeID)
        {
            InitializeComponent();
            UpdateButton.Enabled = false;
            try
            {
                this.employeeId = theEmployeeID;
                if (employeeId != 0)
                {
                    employee = _controller.GetEmployeeByID(theEmployeeID);
                    int positionID = employee.PositionId;
                    UpdateButton.Enabled = true;
                    AddNewButton.Enabled = false;
                }
                else
                {
                    this.Text = @"Create Employee Acccount";
                }

            }
            catch (Exception exception)
            {
                MessageBox.Show(@"There was a problem loading this patient, please try again.");
                this.Close();
            }
        }
Exemplo n.º 2
0
        /// <summary>
        /// Deletes an employee
        /// </summary>
        /// <param name="deleteEmployee"></param>
        /// <returns></returns>
        public static void deleteEmployee(Employee deleteEmployee)
        {
            const string deleteStatement = "Update employees set " +
                                           "enabled = 0 where employeeID = @employeeID";
            try
            {
                using (SqlConnection connection = NorthwindDbConnection.GetConnection())
                {
                    connection.Open();

                    using (SqlCommand updateCommand = new SqlCommand(deleteStatement, connection))
                    {
                        updateCommand.Parameters.AddWithValue("@employeeID", deleteEmployee.EmployeeId);
                        updateCommand.ExecuteNonQuery();
                    }

                }

            }
            catch (SqlException ex)
            {
                throw ex;
            }
            catch (Exception ex)
            {
                throw ex;
            }
        }
Exemplo n.º 3
0
        /// <summary>
        /// Adds a new employee
        /// </summary>
        /// <param name="employee"></param>
        public static void AddEmployee(Employee employee)
        {
            string insertStatement = "INSERT into employees " +
                                  " (address, city, dob, first_name, gender, last_name, middle_initial, positionID, phone, ssn, state, zip, login, password, enabled) " +
                                  " values(@address, @city, @dob, @first_name, @gender, @last_name, @middle_initial, @positionID, @phone, @ssn, @state, @zip, @login, @password, @enabled)";

            try
            {
                using (SqlConnection connection = NorthwindDbConnection.GetConnection())
                {
                    connection.Open();

                    using (SqlCommand insertCommand = new SqlCommand(insertStatement, connection))
                    {

                        insertCommand.Parameters.AddWithValue("@address", employee.Address);
                        insertCommand.Parameters.AddWithValue("@city", employee.City);
                        insertCommand.Parameters.AddWithValue("@dob", employee.Dob);
                        insertCommand.Parameters.AddWithValue("@first_name", employee.FirstName);
                        insertCommand.Parameters.AddWithValue("@gender", employee.Gender);
                        insertCommand.Parameters.AddWithValue("@last_name", employee.LastName);
                        insertCommand.Parameters.AddWithValue("@positionID", employee.PositionId);
                        insertCommand.Parameters.AddWithValue("@middle_initial", employee.MiddleInitial);
                        insertCommand.Parameters.AddWithValue("@phone", employee.Phone);
                        insertCommand.Parameters.AddWithValue("@ssn", employee.Ssn);
                        insertCommand.Parameters.AddWithValue("@state", employee.State);
                        insertCommand.Parameters.AddWithValue("@zip", employee.Zip);

                        if ((employee.Login != "") || (employee.Login != null))
                        {
                            insertCommand.Parameters.AddWithValue("@login", "");
                            insertCommand.Parameters.AddWithValue("@password", "");
                            insertCommand.Parameters.AddWithValue("@enabled", employee.Enabled);
                        }
                        else
                        {
                            insertCommand.Parameters.AddWithValue("@login", employee.Login);
                            insertCommand.Parameters.AddWithValue("@password", employee.Password);
                            insertCommand.Parameters.AddWithValue("@enabled", employee.Enabled);
                        }

                        insertCommand.ExecuteNonQuery();
                    }

                }
            }
            catch (SqlException ex)
            {
                throw ex;
            }
            catch (Exception ex)
            {
                throw ex;
            }
        }
Exemplo n.º 4
0
 public NWViewEmployee(int theEmployeeId)
 {
     InitializeComponent();
     _controller = new NorthwindController();
     try
     {
         this.employeeId = theEmployeeId;
         employee = _controller.GetEmployeeByID(theEmployeeId);
     }
     catch (Exception exception)
     {
         MessageBox.Show(@"There was a problem loading this patient, please try again.");
         this.Close();
     }
 }
Exemplo n.º 5
0
        /// <summary>
        /// Logs in the user
        /// </summary>
        /// <param name="sender"></param>
        /// <param name="e"></param>
        private void loginButton_Click(object sender, EventArgs e)
        {
            SimpleAES encrypt = new SimpleAES();
            String name = NameBox.Text;
            String password = PasswordBox.Text;
            password = encrypt.EncryptToString(password);
            try
            {
                Employee employee = _controller.EmployeeLogIn(name, password);

                if (employee == null )
                {
                  MessageBox.Show(@"No valid user found, please try your user name and password again");
                }
                else if (employee.PositionId == 1 && employee.Enabled == 1)
                {
                    MessageBox.Show(@"Valid login. Welcome Nurse " + employee.FirstName + " " + employee.LastName);
                    employeeUser = employee;
                    NorthwindAdmin homeN = new NorthwindAdmin(employee);
                    homeN.Show();
                    this.Hide();
                }
                else if (employee.PositionId == 3 && employee.Enabled == 1)
                {
                    MessageBox.Show(@"Valid login. Welcome Admin " + employee.FirstName + " " + employee.LastName);
                    employeeUser = employee;
                    NorthwindAdmin homeA = new NorthwindAdmin(employee);
                    homeA.Show();
                    this.Hide();

                }
                else if ((employee.PositionId == 3 || employee.PositionId == 1) & employee.Enabled == 0)
                {
                    MessageBox.Show(@"Your account is currently disabled, please contact an admin.");

                }
                else
                {
                     MessageBox.Show(@"Only Nurses Or Administrators May login at this time.");
                }

            }
            catch (Exception ex)
            {

                MessageBox.Show(ex.Message, ex.GetType().ToString() + "Something happened");
            }
        }
Exemplo n.º 6
0
        /// <summary>
        /// Creates the main form for the application, displays a welcome to the user, makes sure the necessary parts are enabled
        /// </summary>
        /// <param name="employee">the employee object passed by login screen</param>
        public NorthwindAdmin(Employee employee)
        {
            InitializeComponent();
            int id = employee.PositionId;
            String username = employee.FirstName + " " + employee.LastName;
            UserLabel.Text = "Welcome " + username;
            if (id == 1) {
            NWMenuStrip.Enabled = true;
                adminMenuItems.Enabled = false;
                adminMenuItems.HideDropDown();
                adminMenuItems.Visible = false;
            }
            else if (id == 3)
            {
                NWMenuStrip.Enabled = true;
                adminMenuItems.Enabled = true;
                patientToolStripMenuItem.Enabled = false;
                patientToolStripMenuItem.HideDropDown();
                patientToolStripMenuItem.Visible = false;

            }
            UserLabel.Visible = true;
        }
Exemplo n.º 7
0
        /// <summary>
        /// Updates and existing employee
        /// </summary>
        /// <param name="updatedEmployee"></param>
        /// <returns></returns>
        public static void UpdateEmployee(Employee updatedEmployee)
        {
            const string updateStatement = "Update employees set " +
                                           " address = @address , city = @city, dob = @dob, first_name= @first_name, gender = @gender , login = @login, " +
                                           " last_name = @last_name, middle_initial =@middle_initial, phone = @phone, ssn =@ssn, state =@state, zip=@zip, enabled=@enabled, password=@password "
                                          + " where employeeID = @employeeID ";

            try
            {
                using (SqlConnection connection = NorthwindDbConnection.GetConnection())
                {
                    connection.Open();

                    using (SqlCommand updateCommand = new SqlCommand(updateStatement, connection))
                    {

                        updateCommand.Parameters.AddWithValue("@address", updatedEmployee.Address);
                        updateCommand.Parameters.AddWithValue("@city", updatedEmployee.City);
                        updateCommand.Parameters.AddWithValue("@dob", updatedEmployee.Dob);
                        updateCommand.Parameters.AddWithValue("@first_name", updatedEmployee.FirstName);
                        updateCommand.Parameters.AddWithValue("@gender", updatedEmployee.Gender);
                        updateCommand.Parameters.AddWithValue("@last_name", updatedEmployee.LastName);
                        updateCommand.Parameters.AddWithValue("@middle_initial", updatedEmployee.MiddleInitial);
                        updateCommand.Parameters.AddWithValue("@phone", updatedEmployee.Phone);
                        updateCommand.Parameters.AddWithValue("@ssn", updatedEmployee.Ssn);
                        updateCommand.Parameters.AddWithValue("@state", updatedEmployee.State);
                        updateCommand.Parameters.AddWithValue("@zip", updatedEmployee.Zip);
                        updateCommand.Parameters.AddWithValue("@enabled", updatedEmployee.Enabled);
                        updateCommand.Parameters.AddWithValue("@login", updatedEmployee.Login);
                        updateCommand.Parameters.AddWithValue("@employeeID", updatedEmployee.EmployeeId);
                        updateCommand.Parameters.AddWithValue("@password", updatedEmployee.Password);

                       updateCommand.ExecuteNonQuery();
                    }

                }

            }
            catch (SqlException ex)
            {
                throw ex;
            }
            catch (Exception ex)
            {
                throw ex;
            }
        }
Exemplo n.º 8
0
        /// <summary>
        /// Returns a list employees that match with first name and last name
        /// </summary>
        /// <param name="firstName"></param>
        /// <param name="lastName"></param>
        /// <returns></returns>
        public static List<Employee> searchEmployees(string lastName, string firstName)
        {
            List<Employee> employeeList = new List<Employee>();

            string selectStatement =
                "SELECT * " +
                "FROM employees " +
                "WHERE (last_name = @lastName AND first_name = @firstName)";

            try
            {
                using (SqlConnection connection = NorthwindDbConnection.GetConnection())
                {
                    connection.Open();

                    using (SqlCommand selectCommand = new SqlCommand(selectStatement, connection))
                    {
                        selectCommand.Parameters.AddWithValue("@lastName", lastName);
                        selectCommand.Parameters.AddWithValue("@firstName", firstName);

                        using (SqlDataReader reader = selectCommand.ExecuteReader())
                        {
                                while (reader.Read())
                            {

                            Employee employee = new Employee();

                            employee.Address = reader["address"].ToString().Trim();
                            employee.City = reader["city"].ToString().Trim();
                            employee.Dob = (DateTime)reader["dob"];
                            employee.EmployeeId = (Int32)reader["employeeID"];
                            employee.Enabled = (Byte)reader["enabled"];
                            employee.FirstName = reader["first_name"].ToString().Trim();
                            employee.Gender = reader["gender"].ToString().Trim();
                            employee.LastLogin = reader["last_login"].ToString().Trim();
                            employee.LastName = reader["last_name"].ToString().Trim();
                            employee.Login = reader["login"].ToString().Trim();
                            employee.MiddleInitial = reader["middle_initial"].ToString().Trim();
                            employee.Password = reader["password"].ToString().Trim();
                            employee.Phone = reader["phone"].ToString().Trim();
                            employee.PositionId = (Int32)reader["positionID"];
                            employee.Ssn = (Int32)reader["ssn"];
                            employee.State = reader["state"].ToString().Trim();
                            employee.Zip = (Int32)reader["zip"];
                            employeeList.Add(employee);

                            }
                        }
                    }
                }
            }
            catch (SqlException sqlException)
            {
                throw sqlException;
            }
            catch (Exception exception)
            {
                throw exception;
            }

            return employeeList;
        }
Exemplo n.º 9
0
        /// <summary>
        /// Gets Patient by Id
        /// </summary>
        /// <param name="patientId">int PatientId the ID of patient to get</param>
        /// <returns>Patient patient requested</returns>
        public static Employee GetEmployeeById(int employeeId)
        {
            Employee employee = new Employee();

            string selectStatement =
                "SELECT * " +
                "FROM employees " +
                "WHERE employeeID = @employeeID";

            try
            {
                using (SqlConnection connection = NorthwindDbConnection.GetConnection())
                {
                    connection.Open();

                    using (SqlCommand selectCommand = new SqlCommand(selectStatement, connection))
                    {
                        selectCommand.Parameters.AddWithValue("@employeeID", employeeId);

                        using (SqlDataReader dataReader = selectCommand.ExecuteReader())
                        {

                            int patientIDOrdinal = dataReader.GetOrdinal("employeeID");
                            int ssnOrdinal = dataReader.GetOrdinal("ssn");
                            int last_nameOrdinal = dataReader.GetOrdinal("last_name");
                            int middle_initialOrdinal = dataReader.GetOrdinal("middle_initial");
                            int first_nameOrdinal = dataReader.GetOrdinal("first_name");
                            int dobOrdinal = dataReader.GetOrdinal("dob");
                            int genderOrdinal = dataReader.GetOrdinal("gender");
                            int addressOrdinal = dataReader.GetOrdinal("address");
                            int cityOrdinal = dataReader.GetOrdinal("city");
                            int stateOrdinal = dataReader.GetOrdinal("state");
                            int zipOrdinal = dataReader.GetOrdinal("zip");
                            int phoneOrdinal = dataReader.GetOrdinal("phone");
                            int positionOrdinal = dataReader.GetOrdinal("positionID");
                            int loginOrdinal = dataReader.GetOrdinal("login");
                            int passwordOrdinal = dataReader.GetOrdinal("password");
                            int enabledOrdinal = dataReader.GetOrdinal("enabled");
                            while (dataReader.Read())
                            {

                                employee.EmployeeId = dataReader.GetInt32(patientIDOrdinal);
                                employee.Ssn = dataReader.GetInt32(ssnOrdinal);
                                employee.LastName = dataReader.GetString(last_nameOrdinal);

                                if (!dataReader.IsDBNull(middle_initialOrdinal))
                                    employee.MiddleInitial = dataReader.GetString(middle_initialOrdinal);
                                else
                                    employee.MiddleInitial = string.Empty;

                                employee.FirstName = dataReader.GetString(first_nameOrdinal);
                                employee.Dob = dataReader.GetDateTime(dobOrdinal);
                                employee.Gender = dataReader.GetString(genderOrdinal);
                                employee.PositionId = dataReader.GetInt32(positionOrdinal);
                                employee.Address = dataReader.GetString(addressOrdinal);
                                employee.City = dataReader.GetString(cityOrdinal);
                                employee.State = dataReader.GetString(stateOrdinal);
                                employee.Zip = dataReader.GetInt32(zipOrdinal);
                                employee.Phone = dataReader.GetString(phoneOrdinal);

                                if (!dataReader.IsDBNull(loginOrdinal))
                                {
                                    employee.Login = dataReader.GetString(loginOrdinal);
                                    employee.Password = dataReader.GetString(passwordOrdinal);
                                }

                                if (dataReader.GetByte(enabledOrdinal) == 1)
                                {
                                 employee.Enabled = 1;
                                }
                                else
                                {
                                  employee.Enabled = 0;
                               }

                            }
                        }
                    }
                }
            }
            catch (SqlException sqlException)
            {
                throw sqlException;
            }
            catch (Exception exception)
            {
                throw exception;
            }

            return employee;
        }
Exemplo n.º 10
0
        /// <summary>
        /// Gets all employees
        /// </summary>
        /// <returns> a list of all employees</returns>
        public static List<Employee> GetAllEmployees()
        {
            List<Employee> employeeList = new List<Employee>();
            const string selectStatement = "Select * from employees";

            try
            {
                using (SqlConnection connection = NorthwindDbConnection.GetConnection())
                {
                    connection.Open();

                    using (SqlCommand selectCommand = new SqlCommand(selectStatement, connection))
                    {
                        using (SqlDataReader reader = selectCommand.ExecuteReader())
                        {
                            while (reader.Read())
                            {
                                Employee employee = new Employee();

                                employee.Address = reader["address"].ToString().Trim();
                                employee.City = reader["city"].ToString().Trim();
                                employee.Dob = (DateTime)reader["dob"];
                                employee.EmployeeId = (Int32)reader["employeeID"];
                                employee.Enabled = (Byte)reader["enabled"];
                                employee.FirstName = reader["first_name"].ToString().Trim();
                                employee.Gender = reader["gender"].ToString().Trim();
                                employee.LastLogin = reader["last_login"].ToString().Trim();
                                employee.LastName = reader["last_name"].ToString().Trim();
                                employee.Login = reader["login"].ToString().Trim();
                                employee.MiddleInitial = reader["middle_initial"].ToString().Trim();
                                employee.Password = reader["password"].ToString().Trim();
                                employee.Phone = reader["phone"].ToString().Trim();
                                employee.PositionId = (Int32)reader["positionID"];
                                employee.Ssn = (Int32)reader["ssn"];
                                employee.State = reader["state"].ToString().Trim();
                                employee.Zip = (Int32)reader["zip"];
                                employeeList.Add(employee);

                            }
                        }

                    }
                }
            }
            catch (SqlException ex)
            {
                throw ex;
            }
            catch (Exception ex)
            {
                throw ex;
            }

            return employeeList;
        }
Exemplo n.º 11
0
        /// <summary>
        /// Logs a user in
        /// </summary>
        /// <param name="userName">the login name</param>
        /// <param name="password">the person's password</param>
        /// <returns>an employee object for that user if there is one, or null otherwise</returns>
        public static Employee EmployeeLogIn(String userName, String password)
        {
            Employee employeeReturn = null;
            Employee employee = new Employee();
            SimpleAES encrypt = new SimpleAES();

            String selectStatement = "Select employeeID, enabled, first_name, last_name, last_login, password, positionID, login, password from employees "
            +"where login = @username and password = @password";

            try
            {
                using (SqlConnection connection = NorthwindDbConnection.GetConnection())
                {
                    connection.Open();

                    using (SqlCommand selectCommand = new SqlCommand(selectStatement, connection))
                    {
                        selectCommand.Parameters.AddWithValue("@username", userName);
                        selectCommand.Parameters.AddWithValue("@password", password);

                        using (SqlDataReader reader = selectCommand.ExecuteReader())
                        {
                            while (reader.Read())
                            {

                                employee.EmployeeId = (Int32)reader["employeeID"];
                                employee.Enabled = (Byte)reader["enabled"];
                                employee.FirstName = reader["first_name"].ToString().Trim();
                                employee.LastLogin = reader["last_login"].ToString().Trim();
                                employee.LastName = reader["last_name"].ToString().Trim();
                                employee.Login = reader["login"].ToString().Trim();
                                employee.Password = reader["password"].ToString().Trim();
                                employee.PositionId = (Int32)reader["positionID"];

                            }
                        }

                        selectStatement = " Update employees SET last_login = getdate()"
                            + " where employeeID = " + employee.EmployeeId;
                                SqlCommand selectCommand2 = new SqlCommand(selectStatement, connection);
                                selectCommand2.ExecuteNonQuery();

                    }
                }
                if (employee.Login != null && employee.Login != "")
                {
                    employeeReturn = employee;
                } else {
                    return employeeReturn;
                }
            }
            catch (SqlException ex)
            {
                throw ex;
            }
            catch (Exception ex)
            {
                throw ex;
            }

            return employeeReturn;
        }
Exemplo n.º 12
0
 internal void UpdateEmployee(Employee employee)
 {
     EmployeeDal.UpdateEmployee(employee);
 }
Exemplo n.º 13
0
 internal void DeleteEmployee(Employee deleteEmployee)
 {
     EmployeeDal.deleteEmployee(deleteEmployee);
 }
Exemplo n.º 14
0
 internal void AddEmployee(Employee employee)
 {
     EmployeeDal.AddEmployee(employee);
 }