Пример #1
0
        public bool UpdatePassword(string newPassword, out string errorMessage)
        {
            if (!IsPasswordValid(newPassword, out errorMessage))
            {
                return(false);
            }
            if (!ValidateUser(out errorMessage))
            {
                return(false);
            }

            SQLDatabaseReporting sql = new SQLDatabaseReporting();
            SqlParameter         affectedRows;
            SQLParamList         sqlParams = new SQLParamList()
                                             .Add("@UserID", UserID)
                                             .Add("@NewPassword", newPassword)
                                             .AddOutputParam("@AffectedRows", 4, out affectedRows);

            sql.ExecStoredProcedureDataTable("spCOM_UpdatePassword", sqlParams);

            if (sql.HasError)
            {
                errorMessage = "There was a database level error while attempting to save this user. Please contact the administrator if this error persists.";
                return(false);
            }
            else if (Conversion.StringToInt(affectedRows.Value.ToString(), 0) == 0)
            {
                errorMessage = "Invalid user specified. Unable to change password.";
                return(false);
            }

            return(true);
        }
Пример #2
0
        /// <summary>
        /// Add new user
        /// </summary>
        /// <returns></returns>
        public static string AddNewuser(string userName, string password, string firstName, string lastName, string email, string phone, int addToGroup, int createdUserID, out int msg)
        {
            SQLDatabaseReporting sql       = new SQLDatabaseReporting();
            SQLParamList         sqlParams = new SQLParamList();
            SqlParameter         userId    = new SqlParameter("@UserID", SqlDbType.Int);

            userId.Direction = ParameterDirection.Output;

            sqlParams.Add("@Username", userName);
            sqlParams.Add("@Password", password);
            sqlParams.Add("@ClientID", Config.clientId);
            sqlParams.Add("@CreateUserID", createdUserID);
            sqlParams.Add("@Email", email);
            sqlParams.Add("@Phone", phone);
            sqlParams.Add("@FirstName", firstName);
            sqlParams.Add("@LastName", lastName);
            sqlParams.Add("@ExpirePassword", true);
            sqlParams.Add("@AddToGroup", addToGroup);
            sqlParams.Add(userId);

            sql.ExecStoredProcedureDataTable("spCOM_CreateNewUser", sqlParams);
            if (sql.HasError)
            {
                msg = 1;
                return(UserResource.Error_UnableToSaveUser);
            }
            else
            {
                msg = 0;
                return(UserResource.Message_AddSuccess);
            }
        }
Пример #3
0
        public void LogInUser(string usernameOrEmail, string password, bool useEmailForLogin, int clientID, out int outputValue)
        {
            outputValue = -1;
            //Set up the sql request
            SQLDatabaseReporting sql       = new SQLDatabaseReporting();
            SQLParamList         sqlParams = new SQLParamList();

            sqlParams.Add(useEmailForLogin ? "@Email" : "@Username", usernameOrEmail);

            SqlParameter outParam;

            sqlParams.Add("@Password", password)
            .Add("@ClientID", clientID)
            .Add("@IP", RequestVars.GetRequestIPv4Address())
            .AddOutputParam("@OutputValue", 4, out outParam);

            //Try and get the user's info
            DataTable dt = sql.ExecStoredProcedureDataTable("spCOM_WebReportingLogon", sqlParams);

            if (!sql.HasError)
            {
                outputValue = Conversion.StringToInt(outParam.Value.ToString(), -1);
                if (outputValue == 0 && dt.Rows.Count > 0)
                {
                    //Success!
                    SetUserDataFromDr(dt.Rows[0]);
                    //SessionWrapper.Add<UserInfoModel>("AccountDetail", this);
                    return;
                }
            }
            UserID = -1;
        }
Пример #4
0
        /// <summary>
        /// Updating existing user with new password
        /// </summary>
        /// <param name="newPswd"></param>
        /// <param name="outputValue"></param>
        public bool UpdatePassword(int userId, string newPswd, out string outputMsg)
        {
            if (!CommonFunctions.IsPasswordValid(newPswd, out outputMsg))
            {
                return(false);
            }
            if (!SubFunctions.ValidateUser(out outputMsg))
            {
                return(false);
            }

            SQLDatabaseReporting sql = new SQLDatabaseReporting();
            SqlParameter         affectedRows;
            SQLParamList         sqlParams = new SQLParamList()
                                             .Add("@UserID", userId)
                                             .Add("@NewPassword", newPswd)
                                             .AddOutputParam("@AffectedRows", 4, out affectedRows);

            sql.ExecStoredProcedureDataTable("spCOM_UpdatePassword", sqlParams);
            if (sql.HasError)
            {
                outputMsg = AccountResource.Error_DatabaseLevel;
                return(false);
            }
            else if (Conversion.StringToInt(affectedRows.Value.ToString(), 0) == 0)
            {
                outputMsg = AccountResource.Error_InvalidUserCantChangePassword;
                return(false);
            }

            return(true);
        }
Пример #5
0
        /// <summary>
        /// Load user details
        /// </summary>
        /// <returns></returns>
        public DataTable LoadUserDetails(int userId)
        {
            SQLDatabaseReporting sql       = new SQLDatabaseReporting();
            SQLParamList         sqlParams = new SQLParamList();

            sqlParams.Add("@UserID", userId);
            DataTable dt = sql.ExecStoredProcedureDataTable("spAdmin_User_Get", sqlParams);

            if (!sql.HasError)
            {
                return(dt);
            }

            return(null);
        }
Пример #6
0
        /// <summary>
        /// Get list of Call Center follow-up questions
        /// </summary>
        /// <returns></returns>
        public static DataTable GetQuestions(string rptType)
        {
            SQLDatabaseReporting sql       = new SQLDatabaseReporting();
            SQLParamList         sqlParams = new SQLParamList();

            sqlParams.Add("@ReportType", rptType);

            DataTable dt = sql.ExecStoredProcedureDataTable("spAdmin_Question_List", sqlParams);

            if (!sql.HasError)
            {
                return(dt);
            }

            return(null);
        }
Пример #7
0
        /// <summary>
        /// Get Report per question based on month
        /// </summary>
        /// <returns></returns>
        public static DataTable GetMonthlyRecordOfQuestion(string rptType, string QsnId, int fromMnth, int toMnth)
        {
            SQLDatabaseReporting sql       = new SQLDatabaseReporting();
            SQLParamList         sqlParams = new SQLParamList();

            sqlParams.Add("@ReportSelection", rptType);
            sqlParams.Add("@Question", QsnId);
            sqlParams.Add("@FromMnth", fromMnth);
            sqlParams.Add("@ToMnth", toMnth);

            DataTable dt = sql.ExecStoredProcedureDataTable("sp_GetMonthlyRecordsOfQuestion", sqlParams);

            if (!sql.HasError)
            {
                return(dt);
            }
            return(null);
        }
Пример #8
0
        public static string ResetPassword(string email)
        {
            SqlParameter         rowsUpdated;
            SqlParameter         output;
            SQLDatabaseReporting sql       = new SQLDatabaseReporting();
            SQLParamList         sqlParams = new SQLParamList()
                                             .Add("@Email", email)
                                             .Add("@ClientID", Config.ClientID)
                                             .AddOutputParam("@OutputCode", 4, out output)
                                             .AddOutputParam("@RowCount", 4, out rowsUpdated);

            DataTable dt = sql.ExecStoredProcedureDataTable("spCOM_PasswordReset", sqlParams);

            if (sql.HasError || Int32.Parse(rowsUpdated.Value.ToString()) == 0)
            {
                return(null);
            }
            return(dt.Rows[0]["GUID"].ToString());
        }
Пример #9
0
        /// <summary>
        ///   Gets a user's information from the database using GUID.
        /// </summary>
        public string GetUser(string guid)
        {
            SQLDatabaseReporting sql = new SQLDatabaseReporting();
            //Try and get the user's info
            DataTable dt = sql.ExecStoredProcedureDataTable("spCOM_LoadUserData", new SqlParameter("@GUID", guid));

            if (!sql.HasError)
            {
                if (dt.Rows.Count > 0)
                {
                    //Success!
                    //SetUserDataFromDr(dt.Rows[0]);
                    return(dt.Rows[0]["Email"].ToString());
                }
            }

            // UserID = -1;
            return(null);
        }
Пример #10
0
        /// <summary>
        ///   Gets a user's information from the database using UserID.
        /// </summary>
        public string GetUserByUserId(string userId)
        {
            SQLDatabaseReporting sql = new SQLDatabaseReporting();
            //Try and get the user's info
            DataTable dt = sql.ExecStoredProcedureDataTable("spCOM_LoadUserData", new SqlParameter("@UserID", userId));

            if (!sql.HasError)
            {
                if (dt.Rows.Count > 0)
                {
                    return(dt.Rows[0]["Email"].ToString());
                }
                else
                {
                    return(null);
                }
            }
            return(null);
        }
Пример #11
0
        /// <summary>
        /// Delete user from list
        /// </summary>
        /// <returns></returns>
        public static int DeleteUser(int userID)
        {
            SQLDatabaseReporting sql       = new SQLDatabaseReporting();
            SQLParamList         sqlParams = new SQLParamList();
            SqlParameter         output;
            SqlParameter         rowsUpdated;

            sqlParams.Add("@UserID", userID);
            sqlParams.Add("@ClientID", Config.clientId);
            sqlParams.AddOutputParam("@OutputCode", 4, out output);
            sqlParams.AddOutputParam("@RowCount", 4, out rowsUpdated);

            DataTable dt = sql.ExecStoredProcedureDataTable("spCOM_DeleteUser", sqlParams);

            if (!sql.HasError)
            {
                return(Convert.ToInt32(dt.Rows[0]["AffectedRows"]));
            }

            return(0);
        }
Пример #12
0
        /// <summary>
        /// Update user
        /// </summary>
        /// <returns></returns>
        public static string UpdateUser(int userId, int modifiedUserID, string firstName, string lastName, string email, string phone, int groupId, int status)
        {
            SQLDatabaseReporting sql       = new SQLDatabaseReporting();
            SQLParamList         sqlParams = new SQLParamList();

            sqlParams.Add("@UserID", userId);
            sqlParams.Add("@FirstName", firstName);
            sqlParams.Add("@LastName", lastName);
            sqlParams.Add("@Email", email);
            sqlParams.Add("@Phone", phone);
            sqlParams.Add("@ModifiedUserID", modifiedUserID);
            sqlParams.Add("@GroupID", groupId);
            sqlParams.Add("@Active", status);

            sql.ExecStoredProcedureDataTable("spAdmin_User_Update", sqlParams);
            if (sql.HasError)
            {
                return(UserResource.Error_UnableToUpdateUser);
            }
            else
            {
                return(UserResource.Message_UpdateSuccess);
            }
        }