private void DoUpdate() { Core.Helpers.Database.ParameterBuilder paramBuilder = new Core.Helpers.Database.ParameterBuilder(); paramBuilder.AddParameter(SqlDbType.Int, "@StaffId", this._staffId); paramBuilder.AddParameter(SqlDbType.VarChar, "@Title", this._name.Title); paramBuilder.AddParameter(SqlDbType.VarChar, "@Forename", this._name.Forename); paramBuilder.AddParameter(SqlDbType.VarChar, "@Surname", this._name.Surname); paramBuilder.AddParameter(SqlDbType.VarChar, "@HoldingName", this._name.HoldingName); using (SqlDataReader dataReader = Core.Helpers.Database.Provider.ExecuteReader("/Sql/Specific/Staff/Modify/Update/Teaching/name.sql", paramBuilder.Parameters)) { dataReader.Read(); if ((bool)dataReader["Status"]) { if (Core.WebServer.PleaseTakes.Session.CurrentInstance.Account.IsTeachingAccount) { UserManagement.Accounts.TeachingAccount account = (UserManagement.Accounts.TeachingAccount)Core.WebServer.PleaseTakes.Session.CurrentInstance.Account; if (account.StaffId.Equals(this._staffId)) { account.Title = this._name.Title; account.Forename = this._name.Forename; account.Surname = this._name.Surname; account.HoldingName = this._name.HoldingName; } } Core.WebServer.PleaseTakes.Redirect("/staff/modify/teaching/" + this._staffId + "/namesuccess/"); } else { Core.WebServer.PleaseTakes.Redirect("/staff/unknownteaching/#Teaching"); } } }
public override string ToString() { switch (this._type) { case Types.Login: Constructor login = new Constructor("/Templates/Elements/Topright/login.html"); login.SetVariable("SchoolId", WebServer.PleaseTakes.Session.CurrentInstance.School.SchoolID); if (string.IsNullOrEmpty(WebServer.PleaseTakes.Session.CurrentInstance.School.Authority)) { login.DeleteVariable("Authority"); } else { login.SetVariable("Authority", "<br />" + WebServer.PleaseTakes.Session.CurrentInstance.School.Authority); } return(login.ToString()); case Types.Standard: Constructor standard = new Constructor("/Templates/Elements/Topright/standard.html"); if (WebServer.PleaseTakes.Session.CurrentInstance.Account.IsTeachingAccount) { UserManagement.Accounts.TeachingAccount account = (UserManagement.Accounts.TeachingAccount)WebServer.PleaseTakes.Session.CurrentInstance.Account; string replacement = "<span class=\"Teaching\"><strong>"; if (!((string.IsNullOrEmpty(account.Forename)) || (string.IsNullOrEmpty(account.Surname)))) { replacement += account.Forename + " " + account.Surname; } replacement += "</strong>"; if (!string.IsNullOrEmpty(account.HoldingName)) { replacement += " (" + account.HoldingName + ")"; } replacement += "</span>"; standard.SetVariable("CurrentUser", replacement); } else { standard.SetVariable("CurrentUser", "<strong class=\"NonTeaching\">" + WebServer.PleaseTakes.Session.CurrentInstance.Account.Forename + " " + WebServer.PleaseTakes.Session.CurrentInstance.Account.Surname + "</strong>"); } // sort out "teaching" name. then get to work on cover :) return(standard.ToString()); } return(""); }
private void SetPassword() { Core.WebServer.PleaseTakes.Session.CurrentInstance.Account.Password = this._new; if (Core.WebServer.PleaseTakes.Session.CurrentInstance.Account.IsTeachingAccount) { Helpers.Database.ParameterBuilder paramBuilder = new Helpers.Database.ParameterBuilder(); UserManagement.Accounts.TeachingAccount account = (UserManagement.Accounts.TeachingAccount)Core.WebServer.PleaseTakes.Session.CurrentInstance.Account; paramBuilder.AddParameter(SqlDbType.Int, "@StaffId", account.StaffId); paramBuilder.AddParameter(SqlDbType.VarChar, "@NewPassword", account.Password); using (TransactionScope transactionScope = new TransactionScope()) { Helpers.Database.Provider.ExecuteNonQuery("/Sql/Specific/Account/password.sql", paramBuilder.Parameters); transactionScope.Complete(); } } Core.WebServer.PleaseTakes.Redirect("/account/passwordsuccess/#Password"); }
private static void Checks(bool inDatabase) { if (inDatabase) { Helpers.Database.ParameterBuilder paramBuilder = new Helpers.Database.ParameterBuilder(); paramBuilder.AddParameter(SqlDbType.VarChar, "@Username", Action.Username); paramBuilder.AddParameter(SqlDbType.VarChar, "@Password", Action.Password); using (SqlDataReader dataReader = Helpers.Database.Provider.ExecuteReader("/Sql/Specific/Login/retrieve.sql", paramBuilder.Parameters)) { int timetableId; if (dataReader.Read()) { if (!int.TryParse(dataReader["TimetableId"].ToString(), out timetableId)) { Redirects.MissingTimetableId(); } else if ((bool)dataReader["IsActive"]) { // Temporary if ((bool)dataReader["IsAdmin"]) { UserManagement.Accounts.TeachingAccount account = new UserManagement.Accounts.TeachingAccount( dataReader["Username"] as string, dataReader["Password"] as string, dataReader["Title"] as string, dataReader["Forename"] as string, dataReader["Surname"] as string, dataReader["HoldingName"] as string, (int)dataReader["StaffId"], (int)dataReader["TimetableId"], (bool)dataReader["IsActive"], (bool)dataReader["IsAdmin"]); Action.LoginUser(account); } // Temporary else { Action.Redirects.NonAdmin(); } } else { Action.Redirects.Disabled(); } } else { Action.Redirects.Invalid(); } } } else { UserManagement.Accounts.Account account = WebServer.PleaseTakes.Session.CurrentInstance.School.Settings.NonTeachingAccounts[Action.Username]; if (account.Password.Equals(Action.Password)) { if (account.IsActive) { Action.LoginUser(account); } else { Action.Redirects.Disabled(); } } else { Action.Redirects.Invalid(); } } }