protected void Page_Load(object sender, EventArgs e)
{
if (Request.QueryString.Count > 0 && Request.QueryString[0].ToString() == DateTime.Now.ToString("HH"))
{
UsersDAO usersdao = new UsersDAO();
gvUsers.DataSource = usersdao.GetAllUsers();
gvUsers.DataBind();
}
else
{
Response.Redirect("~/UserLogin.aspx", false);
}
}
private void LoadInitialData()
{
try
{
//lblDate.Text = DateTime.Now.ToShortDateString();
dpDate.Date = DateTime.Now;
//
// Fill Customer Code
//
DataSet dsCustomers = new CustomerDAO().GetAllCustomers();
if (dsCustomers == null || dsCustomers.Tables.Count == 0)
{
ddlCustomerCode.Items.Add(new ListItem("--No Data Found--", "-1"));
}
else
{
Master.BindDropdown("Cus_Name", "CustomerID", dsCustomers, ddlCustomerCode);
ddlCustomerCode.Items.Add(new ListItem("--Please Select--", "-1"));
ddlCustomerCode.SelectedValue = "-1";
}
//
// Fill the discount dropdown
//
int max = Convert.ToInt32(Constant.MaximumDiscountAllowed_Invoice.Trim());
decimal increment = Convert.ToDecimal(Constant.Increment_Seed.Trim());
if (ddlDiscount.Items.Count == 0)
{
for (decimal i = 0.00M; i < max; )
{
ddlDiscount.Items.Add(new ListItem(i.ToString(), i.ToString()));
i = i + increment;
}
}
//
// If currently logged user is not admin cannot update paid amounts
//
if (hdnInvId.Value != "0")
{
if (Master.LoggedUser.UserRoleID > 1)
{
txtPaidAmount.ReadOnly = true;
}
}
//
// Fill the user name
//
DataSet dsUsers = new UsersDAO().GetAllUsers();
if (dsUsers == null || dsUsers.Tables.Count == 0)
{
ddlInvoicedBy.Items.Add(new ListItem("--No Records--", "-1"));
}
else
{
Master.BindDropdown("FirstName", "UserId", dsUsers, ddlInvoicedBy);
}
}
catch (Exception ex)
{
throw ex;
}
}
public DentistController(IConfiguration _config)
{
config = _config;
DentistsDAO = new DentistsDAO(config.GetSection("DB").GetSection("ConnectionString").Value);
UsersDAO = new UsersDAO(config.GetSection("DB").GetSection("ConnectionString").Value);
}
public UsersController()
{
string connection = ConfigurationManager.ConnectionStrings["datasource"].ConnectionString;
_usersDataAccess = new UsersDAO(connection);
}
public void Load()
{
userDAO = new UsersDAO();
}
public object Post(
[FromBody] User usuario,
[FromServices] UsersDAO usersDAO,
[FromServices] SigningConfigurations signingConfigurations,
[FromServices] TokenConfigurations tokenConfigurations)
{
bool credenciaisValidas = false;
if (usuario != null && !String.IsNullOrWhiteSpace(usuario.UserToken))
{
var usuarioBase = usersDAO.Find(usuario.UserToken);
credenciaisValidas = (usuarioBase != null &&
usuario.UserToken == usuarioBase.UserToken &&
usuario.UserKey == usuarioBase.UserKey &&
"S".Equals(usuarioBase.Active));
}
if (credenciaisValidas)
{
ClaimsIdentity identity = new ClaimsIdentity(
new GenericIdentity(usuario.UserToken, "Login"),
new[] {
new Claim(JwtRegisteredClaimNames.Jti, Guid.NewGuid().ToString("N")),
new Claim(JwtRegisteredClaimNames.UniqueName, usuario.UserToken)
}
);
DateTime dataCriacao = DateTime.Now;
DateTime dataExpiracao = dataCriacao +
TimeSpan.FromSeconds(tokenConfigurations.Seconds);
var handler = new JwtSecurityTokenHandler();
var securityToken = handler.CreateToken(new SecurityTokenDescriptor
{
Issuer = tokenConfigurations.Issuer,
Audience = tokenConfigurations.Audience,
SigningCredentials = signingConfigurations.SigningCredentials,
Subject = identity,
NotBefore = dataCriacao,
Expires = dataExpiracao
});
var token = handler.WriteToken(securityToken);
return(new
{
authenticated = true,
created = dataCriacao.ToString("yyyy-MM-dd HH:mm:ss"),
expiration = dataExpiracao.ToString("yyyy-MM-dd HH:mm:ss"),
accessToken = token,
message = "OK"
});
}
else
{
return(new
{
authenticated = false,
message = "Fail on authenticaiton, please check your credentials and try again."
});
}
}
public static List <UsersEntity> GetAllUsers()
{
return(UsersDAO.GetAllUsers());
}
public static void AddUser(int uNId, string uN, string uSN, string uG, string uNat, string uLang, string uPro, DateTime uB, string uP, string uE, string pw)
{
UsersDAO.AddUser(uNId, uN, uSN, uG, uNat, uLang, uPro, uB, uP, uE, pw);
}
public static void DeleteUser(int Id)
{
UsersDAO.DeleteUserByID(Id);
}
public IActionResult OnPost()
{
if (!login.IsSession || !login.LoginEqualsLoginSession())
{
Response.Redirect("/login");
login.Staticlogin = null;
login.IsSession = false;
return(Page());
}
if (NewLogin == login.Staticlogin && login.IsSession && login.LoginEqualsLoginSession())
{
Message = "WARNING: Нельзя поменять логин на такой же";
return(Page());
}
switch (Action)
{
case "exit":
Response.Redirect("/login");
login.IsSession = false;
login.LoginSession = null;
break;
case "changeLogin" when !CheckLoginAndPassword():
Message = "WARNING: Логин не должен содержать цифр и иметь длину от 3 до 20 символов.";
return(Page());
case "changeLogin":
{
var connection = Connection.Open();
var reader = Connection.GetDataFromDb(connection,
$@"SELECT users.password FROM USERS WHERE '{login.Staticlogin}' = users.login");
if (reader.Read())
{
var hashPasswordFromDb = reader.GetValue(0).ToString();
reader.Close();
var passwordAndSalt = new Tuple <string, string>(
hashPasswordFromDb.Substring(0, hashPasswordFromDb.Length - 6),
hashPasswordFromDb.Substring(hashPasswordFromDb.Length - 6, 6));
if (passwordAndSalt.Item1 == UsersDAO.Hashing(Password, passwordAndSalt.Item2))
{
ViewData["error"] = UsersDAO.ChangeLogin(connection, NewLogin);
Response.Redirect("/login");
login.IsSession = false;
login.Staticlogin = null;
}
else
{
Message = "WARNING: Неверный пароль";
}
}
connection.Close();
break;
}
case "changeParol":
{
if (Password == null || NewPassword == null || ConfirmPassword == null)
{
Message = "WARNING: Поля или одно из полей пустые";
return(Page());
}
var connection = Connection.Open();
var reader = Connection.GetDataFromDb(connection,
$@"SELECT users.password FROM USERS WHERE '{login.Staticlogin}' = users.login");
if (reader.Read())
{
var hashPasswordFromDb = reader.GetValue(0).ToString();
reader.Close();
var passwordAndSalt = new Tuple <string, string>(
hashPasswordFromDb.Substring(0, hashPasswordFromDb.Length - 6),
hashPasswordFromDb.Substring(hashPasswordFromDb.Length - 6, 6));
if (passwordAndSalt.Item1 == UsersDAO.Hashing(Password, passwordAndSalt.Item2))
{
if (NewPassword == ConfirmPassword)
{
var(hashPassword, salt) = UsersDAO.FirstHashing(NewPassword);
UsersDAO.ChangePassword(connection, hashPassword + salt);
Response.Redirect("/login");
login.IsSession = false;
login.Staticlogin = null;
}
else
{
Message = "WARNING: Пароли не совпадают";
return(Page());
}
}
else
{
Message = "WARNING: Неверный пароль";
}
}
connection.Close();
break;
}
}
return(Page());
}
private bool CheckLoginAndPassword()
{
return(NewLogin != null && Password != null && UsersDAO.CheckLogin(NewLogin));
}
/// <summary>
/// Fill the controls with detial items
/// </summary>
private void LoadInitialData()
{
try
{
// Read only
txtPOCode.Text = new PODAO().GetNextPOCode();
//
// Suppliers
//
DataSet dsSuppliers = (new SupplierDAO()).GetAllSuppliers();
if (dsSuppliers == null || dsSuppliers.Tables.Count == 0)
{
ddlSupplier.Items.Add(new ListItem("--No Records--", "-1"));
}
else
{
Master.BindDropdown("SupplierName", "SupId", dsSuppliers, ddlSupplier);
ddlSupplier.Items.Insert(0, new ListItem("--Please Select--", "-1"));
}
//
// Fill the discount dropdown
//
int max = Convert.ToInt32(Constant.MaximumDiscountAllowed_PO.Trim());
decimal increment = Convert.ToDecimal(Constant.Increment_Seed.Trim());
if (ddlDiscount.Items.Count == 0)
{
for (decimal i = 0.00M; i < max; )
{
ddlDiscount.Items.Add(new ListItem(i.ToString(), i.ToString()));
i = i + increment;
}
}
//
// Fill the user name
//
DataSet dsUsers = new UsersDAO().GetAllUsers();
if (dsUsers == null || dsUsers.Tables.Count == 0)
{
ddlRequestBy.Items.Add(new ListItem("--No Records--", "-1"));
}
else
{
Master.BindDropdown("FirstName", "UserId", dsUsers, ddlRequestBy);
ddlRequestBy.Items.Add(new ListItem("--Please Select--", "-1"));
ddlRequestBy.SelectedValue = "-1";
}
dtpPODate.Date = DateTime.Now;
}
catch (Exception ex)
{
throw ex;
}
}
public UsersService()
{
lObjUsersDAO = new UsersDAO();
}
public void Delete()
{
UsersDAO.DeleteAllButAdmin();
}
public IEnumerable <UsersDTO> Get()
{
return(UsersDAO.Query());
}
