//write code to hide label of order history
//if user role is admin hide label
protected void Page_Load(object sender, EventArgs e)
{
//Set the UserManager variable declared above to a new instance of the IdentityEF.UserManager class
manager = new IdentityEF.UserManager();
//Call the FindByName method of the UserManager to set the ApplicationUser variable to the user that is currently logged in
user = manager.FindByName(User.Identity.Name);
}
protected void CreateUser_Click(object sender, EventArgs e)
{
//Instantiate a new UserManager object from the IdentityEF class that we imported.
//This object is responsible for reading/writing data related to users of the application.
var manager = new IdentityEF.UserManager();
//Instantiate a new UserManager object from the IdentityEF class that we imported.
//This object represents a user of our application.
//We set the Username property of the ApplicationUser to the text entered in the UserName textbox.
var user = new IdentityEF.ApplicationUser()
{
UserName = UserName.Text
};
//Call the Create method of the UserManager to create a new record for this user.
//Pass in the ApplicationUser object and the password that was entered.
//This writes the user information to the Identity database and returns an IdentityResult object.
IdentityResult result = manager.Create(user, Password.Text);
//if the user information was recorded successfully, create a new OWIN cookie-based claims identity for the user and sign them in
if (result.Succeeded)
{
//Create a new ClaimsIdentity for the user
var userIdentity = manager.CreateIdentity(user, DefaultAuthenticationTypes.ApplicationCookie);
//Get a reference to the OWIN authentication middleware that will handle user authentication
var authenticationManager = HttpContext.Current.GetOwinContext().Authentication;
//Use the authentication mamanger to sign in the user.
//Pass in a new AuthenticationProperties object (allows for setting various properties of authentication.
//Pass in the ClaimsIdentity object created above.
authenticationManager.SignIn(new AuthenticationProperties()
{
}, userIdentity);
//Redirect the user to the Profile page where they can add additional profile variables.
Response.Redirect("~/Account/Profile.aspx");
}
else
{
//Report any errors that may have occurred.
StatusMessage.Text = result.Errors.FirstOrDefault();
}
}
//Method to authenticate a user
protected void SignIn(object sender, EventArgs e)
{
//Instantiate a new UserManager object from the IdentityEF class that we imported.
//This object is responsible for reading/writing data related to users of the application.
var userManager = new IdentityEF.UserManager();
//Call the Find method of the UserManager to attempt to locate the user credentials in the database
//If the credentials are not found, the user variable will be null
var user = userManager.Find(UserName.Text, Password.Text);
//Create a boolean variable that denotes whether the user authentication should persist (the cookie does not expire)
bool rememberme = RememberMe.Checked;
//If the user variable is not null (meaning credentials are valid), sign the user in.
if (user != null)
{
//Get a reference to the OWIN authentication middleware that will handle user authentication
var authenticationManager = HttpContext.Current.GetOwinContext().Authentication;
//Create a new ClaimsIdentity for the user
var userIdentity = userManager.CreateIdentity(user, DefaultAuthenticationTypes.ApplicationCookie);
//Use the authentication mamanger to sign in the user.
//Pass in a new AuthenticationProperties object (allows for setting various properties of authentication.
//Pass in the ClaimsIdentity object created above.
authenticationManager.SignIn(new AuthenticationProperties()
{
IsPersistent = rememberme
}, userIdentity);
//Redirect the user to the Profile page where they can add/modify additional profile variables.
Response.Redirect("~/Account/Profile.aspx");
}
else
{
StatusText.Text = "Invalid username or password.";
StatusBox.Visible = true;
}
}
protected async void btnSaveChanges_OnServerClickAsync(object sender, EventArgs e)
{
//Instantiate a new UserManager object from the IdentityEF class that we imported.
//This object is responsible for reading/writing data related to users of the application.
var manager = new IdentityEF.UserManager();
if (txtNewPassword.Value == txtConfirmNewPassword.Value)
{
//Update password
IdentityResult result = await manager.ChangePasswordAsync(User.Identity.GetUserId(),
txtCurrentPassword.Value, txtNewPassword.Value);
if (result.Succeeded)
{
lblStatus.Text = "Password updated successfully.";
}
else
{
lblStatus.Text = "Error updating password.";
}
}
}
protected void CreateUser_Click(object sender, EventArgs e)
{
//Instantiate a new UserManager object from the IdentityEF class that we imported.
//This object is responsible for reading/writing data related to users of the application.
var manager = new IdentityEF.UserManager();
//Instantiate a new UserManager object from the IdentityEF class that we imported.
//This object represents a user of our application.
//We set the Username property of the ApplicationUser to the text entered in the UserName textbox.
var user = new IdentityEF.ApplicationUser()
{
UserName = UserName.Text
};
//Call the Create method of the UserManager to create a new record for this user.
//Pass in the ApplicationUser object and the password that was entered.
//This writes the user information to the Identity database and returns an IdentityResult object.
IdentityResult result = manager.Create(user, Password.Text);
//IS THIS CORRECT?????????????
user.memberdate = DateTime.Today;
//Write user's username to customer history when user is created with ado code
//sql insert statement
string insertSQL = " Insert into CustomerHistory (UserName) Values (@UserName)";
//define connection string
string connectionstring = WebConfigurationManager.ConnectionStrings["ConnectionString"].ConnectionString;
// create new sqlconnection
SqlConnection con = new SqlConnection(connectionstring);
//create sqlcmd to excute query
SqlCommand cmd = new SqlCommand(insertSQL, con);
//define parameters
cmd.Parameters.AddWithValue("@UserName", user.UserName);
//keep track of changes
int added = 0;
try
{
//open connection
con.Open();
//excute query
added = cmd.ExecuteNonQuery();
}
catch (Exception err)
{
}
finally
{
con.Close();
}
//if the user information was recorded successfully, create a new OWIN cookie-based claims identity for the user and sign them in
if (result.Succeeded)
{
//Create a new ClaimsIdentity for the user
var userIdentity = manager.CreateIdentity(user, DefaultAuthenticationTypes.ApplicationCookie);
//Get a reference to the OWIN authentication middleware that will handle user authentication
var authenticationManager = HttpContext.Current.GetOwinContext().Authentication;
//Use the authentication mamanger to sign in the user.
//Pass in a new AuthenticationProperties object (allows for setting various properties of authentication.
//Pass in the ClaimsIdentity object created above.
authenticationManager.SignIn(new AuthenticationProperties()
{
}, userIdentity);
//Redirect the user to the Profile page where they can add additional profile variables.
Response.Redirect("~/Account/Profile.aspx");
}
else
{
//Report any errors that may have occurred.
StatusMessage.Text = result.Errors.FirstOrDefault();
}
}
protected void CreateUser_Click(object sender, EventArgs e)
{
if (txtRegisterPassword.Value == txtConfirmPassword.Value && txtRegisterEmail.Value != null && txtConfirmPassword.Value != null && txtFirstName.Value != null && txtLastName.Value != null)
{
//Instantiate a new UserManager object from the IdentityEF class that we imported.
//This object is responsible for reading/writing data related to users of the application.
var manager = new IdentityEF.UserManager();
//Instantiate a new UserManager object from the IdentityEF class that we imported.
//This object represents a user of our application.
//We set the Username property of the ApplicationUser to the text entered in the UserName textbox.
var user = new IdentityEF.ApplicationUser();
user.UserName = txtRegisterEmail.Value;
user.Email = txtRegisterEmail.Value;
//Call the Create method of the UserManager to create a new record for this user.
//Pass in the ApplicationUser object and the password that was entered.
//This writes the user information to the Identity database and returns an IdentityResult object.
IdentityResult result = manager.Create(user, txtRegisterPassword.Value);
//Connect to the 5050_Viavago database and insert the UserName into the Users table
string constring = WebConfigurationManager.ConnectionStrings["5050_Viavago"].ConnectionString;
SqlConnection con = new SqlConnection(constring);
string insertCommand = "INSERT INTO Users (UserName, FirstName, LastName) VALUES (@UserName, @FirstName, @LastName);";
SqlCommand cmd = new SqlCommand(insertCommand, con);
//attach parameter to command
SqlParameter param = cmd.CreateParameter();
param.ParameterName = "@UserName";
param.Value = txtRegisterEmail.Value;
cmd.Parameters.Add(param);
cmd.Parameters.AddWithValue("@FirstName", txtFirstName.Value);
cmd.Parameters.AddWithValue("@LastName", txtLastName.Value);
try
{
con.Open();
cmd.ExecuteNonQuery();
}
catch (Exception err)
{
lblStatus.Text += "Command failed. " + err.Message;
}
finally
{
con.Close();
}
//if the user information was recorded successfully, create a new OWIN cookie-based claims identity for the user and sign them in
if (result.Succeeded)
{
//Create a new ClaimsIdentity for the user
var userIdentity = manager.CreateIdentity(user, DefaultAuthenticationTypes.ApplicationCookie);
//Get a reference to the OWIN authentication middleware that will handle user authentication
var authenticationManager = HttpContext.Current.GetOwinContext().Authentication;
//Use the authentication mamanger to sign in the user.
//Pass in a new AuthenticationProperties object (allows for setting various properties of authentication.
//Pass in the ClaimsIdentity object created above.
authenticationManager.SignIn(new AuthenticationProperties()
{
}, userIdentity);
string selectCommand = "SELECT UserID FROM Users WHERE UserName = @UserName;";
SqlCommand cmdSelect = new SqlCommand(selectCommand, con);
cmdSelect.Parameters.AddWithValue("@UserName", txtRegisterEmail.Value);
DataTable table = new DataTable();
try
{
con.Open();
SqlDataReader reader = cmdSelect.ExecuteReader();
table.Load(reader);
}
catch (Exception err)
{
lblStatus.Text = err.Message;
}
finally
{
con.Close();
}
var UserId = (Int32)table.Rows[0]["UserID"];
Session["UserId"] = UserId;
//Redirect the user to the Profile page where they can add additional profile variables.
Response.Redirect("~/EditProfile.aspx");
}
else
{
//Report any errors that may have occurred.
lblStatus.Text = result.Errors.FirstOrDefault();
}
}
else
{
lblStatus.Text = "Passwords must match and all fields must be completed.";
}
}
//Method to authenticate a user
protected void SignIn(object sender, EventArgs e)
{
//Instantiate a new UserManager object from the IdentityEF class that we imported.
//This object is responsible for reading/writing data related to users of the application.
var userManager = new IdentityEF.UserManager();
//Call the Find method of the UserManager to attempt to locate the user credentials in the database
//If the credentials are not found, the user variable will be null
var user = userManager.Find(txtLoginEmail.Value, txtLoginPassword.Value);
//Create a boolean variable that denotes whether the user authentication should persist (the cookie does not expire)
bool rememberme = chkRememberMe.Checked;
//If the user variable is not null (meaning credentials are valid), sign the user in.
if (user != null)
{
//Get a reference to the OWIN authentication middleware that will handle user authentication
var authenticationManager = HttpContext.Current.GetOwinContext().Authentication;
//Create a new ClaimsIdentity for the user
var userIdentity = userManager.CreateIdentity(user, DefaultAuthenticationTypes.ApplicationCookie);
//Use the authentication mamanger to sign in the user.
//Pass in a new AuthenticationProperties object (allows for setting various properties of authentication.
//Pass in the ClaimsIdentity object created above.
authenticationManager.SignIn(new AuthenticationProperties()
{
IsPersistent = rememberme
}, userIdentity);
string constring = WebConfigurationManager.ConnectionStrings["5050_Viavago"].ConnectionString;
SqlConnection con = new SqlConnection(constring);
string selectCommand = "SELECT UserID FROM Users WHERE UserName = @UserName;";
SqlCommand cmdSelect = new SqlCommand(selectCommand, con);
cmdSelect.Parameters.AddWithValue("@UserName", txtLoginEmail.Value);
DataTable table = new DataTable();
try
{
con.Open();
SqlDataReader reader = cmdSelect.ExecuteReader();
table.Load(reader);
}
catch (Exception err)
{
lblStatus.Text = err.Message;
}
finally
{
con.Close();
}
var UserId = (Int32)table.Rows[0]["UserID"];
Session["UserId"] = UserId;
//Redirect the user to the Profile page where they can add/modify additional profile variables.
Response.Redirect("~/EditProfile.aspx");
}
else
{
lblStatus.Text = "Invalid username or password.";
}
}
