private void updatePassword()
{
try
{
PreferencesService preferencesService = new PreferencesService(SessionManager.sessionMemberInfo);
PasswordPreferencesDTO passwordPreferences = new PasswordPreferencesDTO();
TransactionResultDTO result;
passwordPreferences.memberId = SessionManager.sessionMemberInfo.id;
passwordPreferences.actualPassword = txtActualPass.Text;
passwordPreferences.newPassword = txtNewPass.Text;
result = preferencesService.updatePasswordPreferences(passwordPreferences);
if (result.code == TransactionResultDTO.transactionResultCode.Success)
{
InfoMessage.setMessage(HttpContext.GetGlobalResourceObject("Resource", "PreferenciasActualizadas").ToString(), Enums.infoMessageType.Success);
}
else
{
showError(HttpContext.GetGlobalResourceObject("Resource", result.failureReason).ToString());
}
clearFields();
}
catch (Exception)
{
showError(HttpContext.GetGlobalResourceObject("Resource", "ErrorGeneral").ToString());
}
}
public void updatePasswordPreferences(PasswordPreferencesDTO passwordPreferences)
{
string sqlSentence = "";
try
{
sqlSentence += "UPDATE members SET ";
sqlSentence += "members.password = @password ";
sqlSentence += "WHERE members.id = @memberId ";
List <SqlParameter> sqlParameters = new List <SqlParameter>();
sqlParameters.Add(new SqlParameter("@password", passwordPreferences.newPassword));
sqlParameters.Add(new SqlParameter("@memberId", memberInfo.id));
dbWrapper.UpdateDelete(sqlSentence, sqlParameters);
}
catch (Exception ex)
{
throw ex;
}
}
public TransactionResultDTO updatePasswordPreferences(PasswordPreferencesDTO passwordPreferences)
{
TransactionResultDTO result = new TransactionResultDTO();
try
{
MembersDAO membersDAO = new MembersDAO();
Member enMember = membersDAO.getMember(memberInfo.id);
string savedPassword = enMember.password;
string newPassword = Encoding.sha512(enMember.email, passwordPreferences.actualPassword);
// If the saved password is the same than the 'actualPassword' sent, continue update
if (savedPassword == newPassword)
{
PreferencesDAO preferencesDAO = new PreferencesDAO(memberInfo);
// Overwrite the member new password with more secure one
passwordPreferences.newPassword = Encoding.sha512(enMember.email, passwordPreferences.newPassword);
preferencesDAO.updatePasswordPreferences(passwordPreferences);
result.code = TransactionResultDTO.transactionResultCode.Success;
}
else
{
result.code = TransactionResultDTO.transactionResultCode.Failed;
result.failureReason = "ErrorContrasenaActualIncorrecta";
return(result);
}
}
catch (Exception ex)
{
throw ex;
}
return(result);
}
