public NWUpdateAccount(int theEmployeeID) { InitializeComponent(); UpdateButton.Enabled = false; try { this.employeeId = theEmployeeID; if (employeeId != 0) { employee = _controller.GetEmployeeByID(theEmployeeID); int positionID = employee.PositionId; UpdateButton.Enabled = true; AddNewButton.Enabled = false; } else { this.Text = @"Create Employee Acccount"; } } catch (Exception exception) { MessageBox.Show(@"There was a problem loading this patient, please try again."); this.Close(); } }
/// <summary> /// Deletes an employee /// </summary> /// <param name="deleteEmployee"></param> /// <returns></returns> public static void deleteEmployee(Employee deleteEmployee) { const string deleteStatement = "Update employees set " + "enabled = 0 where employeeID = @employeeID"; try { using (SqlConnection connection = NorthwindDbConnection.GetConnection()) { connection.Open(); using (SqlCommand updateCommand = new SqlCommand(deleteStatement, connection)) { updateCommand.Parameters.AddWithValue("@employeeID", deleteEmployee.EmployeeId); updateCommand.ExecuteNonQuery(); } } } catch (SqlException ex) { throw ex; } catch (Exception ex) { throw ex; } }
/// <summary> /// Adds a new employee /// </summary> /// <param name="employee"></param> public static void AddEmployee(Employee employee) { string insertStatement = "INSERT into employees " + " (address, city, dob, first_name, gender, last_name, middle_initial, positionID, phone, ssn, state, zip, login, password, enabled) " + " values(@address, @city, @dob, @first_name, @gender, @last_name, @middle_initial, @positionID, @phone, @ssn, @state, @zip, @login, @password, @enabled)"; try { using (SqlConnection connection = NorthwindDbConnection.GetConnection()) { connection.Open(); using (SqlCommand insertCommand = new SqlCommand(insertStatement, connection)) { insertCommand.Parameters.AddWithValue("@address", employee.Address); insertCommand.Parameters.AddWithValue("@city", employee.City); insertCommand.Parameters.AddWithValue("@dob", employee.Dob); insertCommand.Parameters.AddWithValue("@first_name", employee.FirstName); insertCommand.Parameters.AddWithValue("@gender", employee.Gender); insertCommand.Parameters.AddWithValue("@last_name", employee.LastName); insertCommand.Parameters.AddWithValue("@positionID", employee.PositionId); insertCommand.Parameters.AddWithValue("@middle_initial", employee.MiddleInitial); insertCommand.Parameters.AddWithValue("@phone", employee.Phone); insertCommand.Parameters.AddWithValue("@ssn", employee.Ssn); insertCommand.Parameters.AddWithValue("@state", employee.State); insertCommand.Parameters.AddWithValue("@zip", employee.Zip); if ((employee.Login != "") || (employee.Login != null)) { insertCommand.Parameters.AddWithValue("@login", ""); insertCommand.Parameters.AddWithValue("@password", ""); insertCommand.Parameters.AddWithValue("@enabled", employee.Enabled); } else { insertCommand.Parameters.AddWithValue("@login", employee.Login); insertCommand.Parameters.AddWithValue("@password", employee.Password); insertCommand.Parameters.AddWithValue("@enabled", employee.Enabled); } insertCommand.ExecuteNonQuery(); } } } catch (SqlException ex) { throw ex; } catch (Exception ex) { throw ex; } }
public NWViewEmployee(int theEmployeeId) { InitializeComponent(); _controller = new NorthwindController(); try { this.employeeId = theEmployeeId; employee = _controller.GetEmployeeByID(theEmployeeId); } catch (Exception exception) { MessageBox.Show(@"There was a problem loading this patient, please try again."); this.Close(); } }
/// <summary> /// Logs in the user /// </summary> /// <param name="sender"></param> /// <param name="e"></param> private void loginButton_Click(object sender, EventArgs e) { SimpleAES encrypt = new SimpleAES(); String name = NameBox.Text; String password = PasswordBox.Text; password = encrypt.EncryptToString(password); try { Employee employee = _controller.EmployeeLogIn(name, password); if (employee == null ) { MessageBox.Show(@"No valid user found, please try your user name and password again"); } else if (employee.PositionId == 1 && employee.Enabled == 1) { MessageBox.Show(@"Valid login. Welcome Nurse " + employee.FirstName + " " + employee.LastName); employeeUser = employee; NorthwindAdmin homeN = new NorthwindAdmin(employee); homeN.Show(); this.Hide(); } else if (employee.PositionId == 3 && employee.Enabled == 1) { MessageBox.Show(@"Valid login. Welcome Admin " + employee.FirstName + " " + employee.LastName); employeeUser = employee; NorthwindAdmin homeA = new NorthwindAdmin(employee); homeA.Show(); this.Hide(); } else if ((employee.PositionId == 3 || employee.PositionId == 1) & employee.Enabled == 0) { MessageBox.Show(@"Your account is currently disabled, please contact an admin."); } else { MessageBox.Show(@"Only Nurses Or Administrators May login at this time."); } } catch (Exception ex) { MessageBox.Show(ex.Message, ex.GetType().ToString() + "Something happened"); } }
/// <summary> /// Creates the main form for the application, displays a welcome to the user, makes sure the necessary parts are enabled /// </summary> /// <param name="employee">the employee object passed by login screen</param> public NorthwindAdmin(Employee employee) { InitializeComponent(); int id = employee.PositionId; String username = employee.FirstName + " " + employee.LastName; UserLabel.Text = "Welcome " + username; if (id == 1) { NWMenuStrip.Enabled = true; adminMenuItems.Enabled = false; adminMenuItems.HideDropDown(); adminMenuItems.Visible = false; } else if (id == 3) { NWMenuStrip.Enabled = true; adminMenuItems.Enabled = true; patientToolStripMenuItem.Enabled = false; patientToolStripMenuItem.HideDropDown(); patientToolStripMenuItem.Visible = false; } UserLabel.Visible = true; }
/// <summary> /// Updates and existing employee /// </summary> /// <param name="updatedEmployee"></param> /// <returns></returns> public static void UpdateEmployee(Employee updatedEmployee) { const string updateStatement = "Update employees set " + " address = @address , city = @city, dob = @dob, first_name= @first_name, gender = @gender , login = @login, " + " last_name = @last_name, middle_initial =@middle_initial, phone = @phone, ssn =@ssn, state =@state, zip=@zip, enabled=@enabled, password=@password " + " where employeeID = @employeeID "; try { using (SqlConnection connection = NorthwindDbConnection.GetConnection()) { connection.Open(); using (SqlCommand updateCommand = new SqlCommand(updateStatement, connection)) { updateCommand.Parameters.AddWithValue("@address", updatedEmployee.Address); updateCommand.Parameters.AddWithValue("@city", updatedEmployee.City); updateCommand.Parameters.AddWithValue("@dob", updatedEmployee.Dob); updateCommand.Parameters.AddWithValue("@first_name", updatedEmployee.FirstName); updateCommand.Parameters.AddWithValue("@gender", updatedEmployee.Gender); updateCommand.Parameters.AddWithValue("@last_name", updatedEmployee.LastName); updateCommand.Parameters.AddWithValue("@middle_initial", updatedEmployee.MiddleInitial); updateCommand.Parameters.AddWithValue("@phone", updatedEmployee.Phone); updateCommand.Parameters.AddWithValue("@ssn", updatedEmployee.Ssn); updateCommand.Parameters.AddWithValue("@state", updatedEmployee.State); updateCommand.Parameters.AddWithValue("@zip", updatedEmployee.Zip); updateCommand.Parameters.AddWithValue("@enabled", updatedEmployee.Enabled); updateCommand.Parameters.AddWithValue("@login", updatedEmployee.Login); updateCommand.Parameters.AddWithValue("@employeeID", updatedEmployee.EmployeeId); updateCommand.Parameters.AddWithValue("@password", updatedEmployee.Password); updateCommand.ExecuteNonQuery(); } } } catch (SqlException ex) { throw ex; } catch (Exception ex) { throw ex; } }
/// <summary> /// Returns a list employees that match with first name and last name /// </summary> /// <param name="firstName"></param> /// <param name="lastName"></param> /// <returns></returns> public static List<Employee> searchEmployees(string lastName, string firstName) { List<Employee> employeeList = new List<Employee>(); string selectStatement = "SELECT * " + "FROM employees " + "WHERE (last_name = @lastName AND first_name = @firstName)"; try { using (SqlConnection connection = NorthwindDbConnection.GetConnection()) { connection.Open(); using (SqlCommand selectCommand = new SqlCommand(selectStatement, connection)) { selectCommand.Parameters.AddWithValue("@lastName", lastName); selectCommand.Parameters.AddWithValue("@firstName", firstName); using (SqlDataReader reader = selectCommand.ExecuteReader()) { while (reader.Read()) { Employee employee = new Employee(); employee.Address = reader["address"].ToString().Trim(); employee.City = reader["city"].ToString().Trim(); employee.Dob = (DateTime)reader["dob"]; employee.EmployeeId = (Int32)reader["employeeID"]; employee.Enabled = (Byte)reader["enabled"]; employee.FirstName = reader["first_name"].ToString().Trim(); employee.Gender = reader["gender"].ToString().Trim(); employee.LastLogin = reader["last_login"].ToString().Trim(); employee.LastName = reader["last_name"].ToString().Trim(); employee.Login = reader["login"].ToString().Trim(); employee.MiddleInitial = reader["middle_initial"].ToString().Trim(); employee.Password = reader["password"].ToString().Trim(); employee.Phone = reader["phone"].ToString().Trim(); employee.PositionId = (Int32)reader["positionID"]; employee.Ssn = (Int32)reader["ssn"]; employee.State = reader["state"].ToString().Trim(); employee.Zip = (Int32)reader["zip"]; employeeList.Add(employee); } } } } } catch (SqlException sqlException) { throw sqlException; } catch (Exception exception) { throw exception; } return employeeList; }
/// <summary> /// Gets Patient by Id /// </summary> /// <param name="patientId">int PatientId the ID of patient to get</param> /// <returns>Patient patient requested</returns> public static Employee GetEmployeeById(int employeeId) { Employee employee = new Employee(); string selectStatement = "SELECT * " + "FROM employees " + "WHERE employeeID = @employeeID"; try { using (SqlConnection connection = NorthwindDbConnection.GetConnection()) { connection.Open(); using (SqlCommand selectCommand = new SqlCommand(selectStatement, connection)) { selectCommand.Parameters.AddWithValue("@employeeID", employeeId); using (SqlDataReader dataReader = selectCommand.ExecuteReader()) { int patientIDOrdinal = dataReader.GetOrdinal("employeeID"); int ssnOrdinal = dataReader.GetOrdinal("ssn"); int last_nameOrdinal = dataReader.GetOrdinal("last_name"); int middle_initialOrdinal = dataReader.GetOrdinal("middle_initial"); int first_nameOrdinal = dataReader.GetOrdinal("first_name"); int dobOrdinal = dataReader.GetOrdinal("dob"); int genderOrdinal = dataReader.GetOrdinal("gender"); int addressOrdinal = dataReader.GetOrdinal("address"); int cityOrdinal = dataReader.GetOrdinal("city"); int stateOrdinal = dataReader.GetOrdinal("state"); int zipOrdinal = dataReader.GetOrdinal("zip"); int phoneOrdinal = dataReader.GetOrdinal("phone"); int positionOrdinal = dataReader.GetOrdinal("positionID"); int loginOrdinal = dataReader.GetOrdinal("login"); int passwordOrdinal = dataReader.GetOrdinal("password"); int enabledOrdinal = dataReader.GetOrdinal("enabled"); while (dataReader.Read()) { employee.EmployeeId = dataReader.GetInt32(patientIDOrdinal); employee.Ssn = dataReader.GetInt32(ssnOrdinal); employee.LastName = dataReader.GetString(last_nameOrdinal); if (!dataReader.IsDBNull(middle_initialOrdinal)) employee.MiddleInitial = dataReader.GetString(middle_initialOrdinal); else employee.MiddleInitial = string.Empty; employee.FirstName = dataReader.GetString(first_nameOrdinal); employee.Dob = dataReader.GetDateTime(dobOrdinal); employee.Gender = dataReader.GetString(genderOrdinal); employee.PositionId = dataReader.GetInt32(positionOrdinal); employee.Address = dataReader.GetString(addressOrdinal); employee.City = dataReader.GetString(cityOrdinal); employee.State = dataReader.GetString(stateOrdinal); employee.Zip = dataReader.GetInt32(zipOrdinal); employee.Phone = dataReader.GetString(phoneOrdinal); if (!dataReader.IsDBNull(loginOrdinal)) { employee.Login = dataReader.GetString(loginOrdinal); employee.Password = dataReader.GetString(passwordOrdinal); } if (dataReader.GetByte(enabledOrdinal) == 1) { employee.Enabled = 1; } else { employee.Enabled = 0; } } } } } } catch (SqlException sqlException) { throw sqlException; } catch (Exception exception) { throw exception; } return employee; }
/// <summary> /// Gets all employees /// </summary> /// <returns> a list of all employees</returns> public static List<Employee> GetAllEmployees() { List<Employee> employeeList = new List<Employee>(); const string selectStatement = "Select * from employees"; try { using (SqlConnection connection = NorthwindDbConnection.GetConnection()) { connection.Open(); using (SqlCommand selectCommand = new SqlCommand(selectStatement, connection)) { using (SqlDataReader reader = selectCommand.ExecuteReader()) { while (reader.Read()) { Employee employee = new Employee(); employee.Address = reader["address"].ToString().Trim(); employee.City = reader["city"].ToString().Trim(); employee.Dob = (DateTime)reader["dob"]; employee.EmployeeId = (Int32)reader["employeeID"]; employee.Enabled = (Byte)reader["enabled"]; employee.FirstName = reader["first_name"].ToString().Trim(); employee.Gender = reader["gender"].ToString().Trim(); employee.LastLogin = reader["last_login"].ToString().Trim(); employee.LastName = reader["last_name"].ToString().Trim(); employee.Login = reader["login"].ToString().Trim(); employee.MiddleInitial = reader["middle_initial"].ToString().Trim(); employee.Password = reader["password"].ToString().Trim(); employee.Phone = reader["phone"].ToString().Trim(); employee.PositionId = (Int32)reader["positionID"]; employee.Ssn = (Int32)reader["ssn"]; employee.State = reader["state"].ToString().Trim(); employee.Zip = (Int32)reader["zip"]; employeeList.Add(employee); } } } } } catch (SqlException ex) { throw ex; } catch (Exception ex) { throw ex; } return employeeList; }
/// <summary> /// Logs a user in /// </summary> /// <param name="userName">the login name</param> /// <param name="password">the person's password</param> /// <returns>an employee object for that user if there is one, or null otherwise</returns> public static Employee EmployeeLogIn(String userName, String password) { Employee employeeReturn = null; Employee employee = new Employee(); SimpleAES encrypt = new SimpleAES(); String selectStatement = "Select employeeID, enabled, first_name, last_name, last_login, password, positionID, login, password from employees " +"where login = @username and password = @password"; try { using (SqlConnection connection = NorthwindDbConnection.GetConnection()) { connection.Open(); using (SqlCommand selectCommand = new SqlCommand(selectStatement, connection)) { selectCommand.Parameters.AddWithValue("@username", userName); selectCommand.Parameters.AddWithValue("@password", password); using (SqlDataReader reader = selectCommand.ExecuteReader()) { while (reader.Read()) { employee.EmployeeId = (Int32)reader["employeeID"]; employee.Enabled = (Byte)reader["enabled"]; employee.FirstName = reader["first_name"].ToString().Trim(); employee.LastLogin = reader["last_login"].ToString().Trim(); employee.LastName = reader["last_name"].ToString().Trim(); employee.Login = reader["login"].ToString().Trim(); employee.Password = reader["password"].ToString().Trim(); employee.PositionId = (Int32)reader["positionID"]; } } selectStatement = " Update employees SET last_login = getdate()" + " where employeeID = " + employee.EmployeeId; SqlCommand selectCommand2 = new SqlCommand(selectStatement, connection); selectCommand2.ExecuteNonQuery(); } } if (employee.Login != null && employee.Login != "") { employeeReturn = employee; } else { return employeeReturn; } } catch (SqlException ex) { throw ex; } catch (Exception ex) { throw ex; } return employeeReturn; }
internal void UpdateEmployee(Employee employee) { EmployeeDal.UpdateEmployee(employee); }
internal void DeleteEmployee(Employee deleteEmployee) { EmployeeDal.deleteEmployee(deleteEmployee); }
internal void AddEmployee(Employee employee) { EmployeeDal.AddEmployee(employee); }