public async Task <JsonResult> OnGetLogin(string Email, string Pwd)
{
var result = new JsonResult(false);
var s = new BLL_School();
var u = new BLL_User();
var school = await s.LoadSchool(Email);
if (school.SchoolName != null && school.SchoolName.Length > 0)
{
Globals.ConfigureSchoolDatabase(school.ServerName, school.DatabaseName);
string encryptedEmail = Security.Encrypt(Email);
var user = await u.LoadUser(encryptedEmail);
if (user.UserId > 0)
{
var auth = Security.HashWithSalt(Pwd, user.Salt);
if (auth == user.Pwd)
{
var identity = new ClaimsIdentity(new[] {
new Claim(ClaimTypes.Name, Email)
}, CookieAuthenticationDefaults.AuthenticationScheme);
var principal = new ClaimsPrincipal(identity);
var login = HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, principal);
result = new JsonResult(true);
}
}
}
return(result);
}
private void btn_Update_Click(object sender, EventArgs e)
{
//Get the values from User UI
p.id = int.Parse(txt_ProductID.Text);
p.name = txt_Name.Text;
p.category = cmb_Category.Text;
p.description = txt_Description.Text;
p.rate = decimal.Parse(txt_Rate.Text);
p.added_date = DateTime.Now;
//getting username of the logged in user
string loggedUser = frm_Login.loggedIn;
BLL_User usr = udal.GetIdFromUsername(loggedUser);
p.added_by = usr.id;
//Updating data into database
bool success = pdal.Update(p);
if (success == true)
{
MessageBox.Show("Product successfully updated");
clear();
//Refreshing data grid view
DataTable dt = pdal.Select();
dgv_Products.DataSource = dt;
}
else
{
MessageBox.Show("Failed to update product");
}
}
public BLL_User GetIdFromUsername(string username)
{
BLL_User u = new BLL_User();
SqlConnection conn = new SqlConnection(myconnstrng);
DataTable dt = new DataTable();
try
{
string sql = "SELECT id from tbl_users WHERE username='******'";
SqlDataAdapter adapter = new SqlDataAdapter(sql, conn);
conn.Open();
adapter.Fill(dt);
if (dt.Rows.Count > 0)
{
u.id = int.Parse(dt.Rows[0]["id"].ToString());
}
}
catch (Exception ex)
{
MessageBox.Show(ex.Message);
}
finally
{
conn.Close();
}
return(u);
}
private void btn_Update_Click(object sender, EventArgs e)
{
//Get the values from User UI
c.id = int.Parse(txt_CategoryID.Text);
c.title = txt_Title.Text;
c.description = txt_Description.Text;
c.added_date = DateTime.Now;
//getting username of the logged in user
string loggedUser = frm_Login.loggedIn;
BLL_User usr = udal.GetIdFromUsername(loggedUser);
c.added_by = usr.id;
//Updating data into database
bool success = dal.Update(c);
if (success == true)
{
MessageBox.Show("Category updated successfully");
clear();
//Refreshing data grid view
DataTable dt = dal.Select();
dgv_Categories.DataSource = dt;
}
else
{
MessageBox.Show("Failed to update category");
}
}
private void btn_Update_Click(object sender, EventArgs e)
{
//Get the values from User UI
dc.id = int.Parse(txt_DeaCustID.Text);
dc.type = cmb_Type.Text;
dc.name = txt_Name.Text;
dc.email = txt_Email.Text;
dc.contact = txt_Contact.Text;
dc.address = txt_Address.Text;
dc.added_date = DateTime.Now;
//getting id in added by field
string loggedUser = frm_Login.loggedIn;
BLL_User usr = uDal.GetIdFromUsername(loggedUser);
//passing the id of logged in user in added by field
dc.added_by = usr.id;
//Updating data into database
bool success = dcDal.Update(dc);
if (success == true)
{
MessageBox.Show("Dealer/Customer updated successfully");
clear();
//Refreshing data grid view
DataTable dt = dcDal.Select();
dgv_DeaCust.DataSource = dt;
}
else
{
MessageBox.Show("Failed to update Dealer/Customer");
}
}
private void btn_Add_Click(object sender, EventArgs e)
{
c.title = txt_Title.Text;
c.description = txt_Description.Text;
c.added_date = DateTime.Now;
//getting id in added by field
string loggedUser = frm_Login.loggedIn;
BLL_User usr = udal.GetIdFromUsername(loggedUser);
//passing the id of logged in user in added by field
c.added_by = usr.id;
bool success = dal.Insert(c);
if (success == true)
{
MessageBox.Show("New category inserted successfully.");
clear();
//Refreshing data grid view
DataTable dt = dal.Select();
dgv_Categories.DataSource = dt;
}
else
{
MessageBox.Show("Failed to insert new category .");
}
}
private void btn_Add_Click(object sender, EventArgs e)
{
dc.type = cmb_Type.Text;
dc.name = txt_Name.Text;
dc.email = txt_Email.Text;
dc.contact = txt_Contact.Text;
dc.address = txt_Address.Text;
dc.added_date = DateTime.Now;
//getting id in added by field
string loggedUser = frm_Login.loggedIn;
BLL_User usr = uDal.GetIdFromUsername(loggedUser);
//passing the id of logged in user in added by field
dc.added_by = usr.id;
bool success = dcDal.Insert(dc);
if (success == true)
{
MessageBox.Show("New Dealer/Customer Added successfully.");
clear();
//Refreshing data grid view
DataTable dt = dcDal.Select();
dgv_DeaCust.DataSource = dt;
}
else
{
MessageBox.Show("Failed to insert new category .");
}
}
private void btn_save_Click(object sender, EventArgs e)
{
try
{
if (lb_userName.Text != null | lb_userName.Text != "")
{
foreach (RadioButton rb in rb)
{
if (rb.Checked == true)
{
BLL_User.editRole(lb_userName.Text, rb.Tag.ToString().Trim());
}
}
}
else
{
MessageBox.Show("Chưa Chọn User");
}
}
catch (Exception)
{
MessageBox.Show("Thất Bại");
throw;
}
}
// GET: ShoppingCart
public ActionResult Index()
{
List <ShowShoppingCart> shopCart = new List <ShowShoppingCart>();
if (Session["ShoppingCart"] != null)
{
List <Piece> shop = Session["ShoppingCart"] as List <Piece>;
foreach (var item in shop)
{
var piece = pieceList.Find(p => p.ID == item.ID);
shopCart.Add(new ShowShoppingCart()
{
PieceId = piece.ID,
TypeName = pieceTypeList.Find(t => t.ID == piece.PieceTypeId).PersianName,
BrandName = brandList.Find(b => b.ID == piece.BrandId).PersianName,
DeviceName = deviceList.Find(d => d.ID == piece.DeviceId).PersianName,
Price = piece.Price,
FileName = piece.FileName
});
}
}
User user = (User)Session["User"];
User currentUser = new BLL_User().GetUser(user.ID);
ViewBag.CurrentUser = currentUser;
return(View(shopCart));
}
private void FormAdmin_Load(object sender, EventArgs e)
{
rb = new List <RadioButton>();
rb.Add(rb_admin);
rb.Add(rb_banHang);
rb.Add(rb_congNo);
rb.Add(rb_kho);
rb.Add(rb_nhanSu);
rb.Add(rb_pkh);
rb.Add(rb_no);
BLL_User.LoadUser(tw_ds);
}
private void ucUser_Load(object sender, EventArgs e)
{
_db = new BLL_User(cls_Main.duongdanfileketnoi);
_gv = new BLL_GiaoVien(cls_Main.duongdanfileketnoi);
DanhSachUserLoad();
LoadDanhSachNhanvien(ref err, cbnhanvien);
LoadDanhSachNhanvienPQ(ref err, combonvpq);
cbnhanvien.SelectedIndex = -1;
combonvpq.SelectedIndex = -1;
txttendn.Enabled = false;
txtmk.Enabled = false;
cbnhanvien.Enabled = false;
}
private void FrmLogin_Load(object sender, EventArgs e)
{
_db = new BLL_User(cls_Main.duongdanfileketnoi);
lbltrangthai.Text = "";
if (!db1.kiemtraketnoi(cls_Main.duongdanfileketnoi))
{
btnluucauhinh.Enabled = true;
lbltrangthai.Text = "Vui lòng kiểm tra kết nối và khởi động lại";
}
else
{
btnluucauhinh.Enabled = false;
}
}
public JsonResult SystemAccount()
{
var sReturnModel = new ReturnMessageModel();
string UserName = RequestParameters.Pstring("UserName");
string Password = RequestParameters.Pstring("Password");
string newPwd = new AESCrypt().Encrypt(Password);
td_User userInfo = new td_User();
//userInfo.user_Id = 141;
userInfo.user_Name = UserName;
userInfo.user_Pwd = newPwd;
userInfo.user_Sign = 1;
//userInfo.user_TrueName = "test";
//userInfo.user_Purview = 1;
//userInfo.user_Dept = "hlw";
try
{
var usersBll = new BLL_User();
var item = usersBll.GetObjectByUserAccount(UserName);//, HashEncrypt.BgPassWord(Password));
if (item == null)
{
if (usersBll.AddAccount(userInfo))
{
sReturnModel.ErrorType = 1;
sReturnModel.MessageContent = "注册成功.";
}
else
{
sReturnModel.ErrorType = 2;
sReturnModel.MessageContent = "注册失败.";
}
return(Json(sReturnModel));
}
else
{
sReturnModel.ErrorType = 2;
sReturnModel.MessageContent = "账号名称已存在.";
return(Json(sReturnModel));
}
}
catch (Exception ex)
{
sReturnModel.ErrorType = 2;
sReturnModel.MessageContent = "系统异常:" + ex.Message;
return(Json(sReturnModel));
}
}
public bool Insert(BLL_User u)
{
bool isSuccess = false;
SqlConnection conn = new SqlConnection(myconnstrng);
try
{
String sql = "INSERT INTO tbl_users (first_name, last_name, email, username, password, contact, address, gender, user_type, added_date, added_by) VALUES (@first_name, @last_name, @email, @username, @password, @contact, @address, @gender, @user_type, @added_date, @added_by)";
SqlCommand cmd = new SqlCommand(sql, conn);
cmd.Parameters.AddWithValue("@first_name", u.first_name);
cmd.Parameters.AddWithValue("@last_name", u.last_name);
cmd.Parameters.AddWithValue("@email", u.email);
cmd.Parameters.AddWithValue("@username", u.username);
cmd.Parameters.AddWithValue("@password", u.password);
cmd.Parameters.AddWithValue("@contact", u.contact);
cmd.Parameters.AddWithValue("@address", u.address);
cmd.Parameters.AddWithValue("@gender", u.gender);
cmd.Parameters.AddWithValue("@user_type", u.user_type);
cmd.Parameters.AddWithValue("@added_date", u.added_date);
cmd.Parameters.AddWithValue("@added_by", u.added_by);
conn.Open();
int rows = cmd.ExecuteNonQuery();
//if the query is excute successfully then the value to rows will be greater than 0 else it will be less than 0
if (rows > 0)
{
//Query Successfull
isSuccess = true;
}
else
{
//query failed
isSuccess = false;
}
}
catch (Exception ex)
{
MessageBox.Show(ex.Message);
}
finally
{
conn.Close();
}
return(isSuccess);
}
public bool Update(BLL_User u)
{
bool isSuccess = false;
SqlConnection conn = new SqlConnection(myconnstrng);
try
{
string sql = "UPDATE tbl_users SET first_name=@first_name, last_name=@last_name, email=@email, username=@username, password=@password, contact=@contact, address=@address, gender=@gender, user_type=@user_type, added_date=@added_date, added_by=@added_by WHERE id=@id";
SqlCommand cmd = new SqlCommand(sql, conn);
cmd.Parameters.AddWithValue("@first_name", u.first_name);
cmd.Parameters.AddWithValue("@last_name", u.last_name);
cmd.Parameters.AddWithValue("@email", u.email);
cmd.Parameters.AddWithValue("@username", u.username);
cmd.Parameters.AddWithValue("@password", u.password);
cmd.Parameters.AddWithValue("@contact", u.contact);
cmd.Parameters.AddWithValue("@address", u.address);
cmd.Parameters.AddWithValue("@gender", u.gender);
cmd.Parameters.AddWithValue("@user_type", u.user_type);
cmd.Parameters.AddWithValue("@added_date", u.added_date);
cmd.Parameters.AddWithValue("@added_by", u.added_by);
cmd.Parameters.AddWithValue("@id", u.id);
conn.Open();
int rows = cmd.ExecuteNonQuery();
if (rows > 0)
{
//Query Successfull
isSuccess = true;
}
else
{
//query failed
isSuccess = false;
}
}
catch (Exception ex)
{
MessageBox.Show(ex.Message);
}
finally
{
conn.Close();
}
return(isSuccess);
}
private ReturnMessageModel LoginFun(JObject model)
{
var name = model["Name"].ToString().ToLower();
var pass = model["Pass"].ToString().ToLower();
var code = model["Code"].ToString().ToLower();
ReturnMessageModel returnMessage = new ReturnMessageModel();
if (string.IsNullOrEmpty(code))
{
returnMessage.ErrorType = 3;
returnMessage.MessageContent = "验证码不能为空";
return(returnMessage);
}
if (code != Vcode)
{
returnMessage.ErrorType = 2;
returnMessage.MessageContent = "验证码错误";
return(returnMessage);
}
pass = CommonLib.HashEncrypt.BgPassWord(pass);
BLL_User userBll = new BLL_User();
var UserModel = userBll.LoginUsers(name, pass);
if (UserModel != null)
{
//设置个人信息
//个人信息类 拓展
returnMessage.IsSuccess = true;
returnMessage.ErrorType = 1;
returnMessage.MessageContent = "登录成功";
return(returnMessage);
}
else
{
returnMessage.ErrorType = 0; //可有可无 构造方法已赋值
returnMessage.MessageContent = "账号密码错误";
return(returnMessage);
}
}
private void btn_Add_Click(object sender, EventArgs e)
{
//getting username of the logged in user
string loggedUser = frm_Login.loggedIn;
//Getting data from UI
u.first_name = txt_FirstName.Text;
u.last_name = txt_LastName.Text;
u.email = txt_Email.Text;
u.username = txt_UserName.Text;
u.password = txt_Password.Text;
u.contact = txt_Contact.Text;
u.address = txt_Address.Text;
u.gender = cmb_Gender.Text;
u.user_type = cmb_UserType.Text;
u.added_date = DateTime.Now;
BLL_User usr = dal.GetIdFromUsername(loggedUser);
u.added_by = usr.id;
// Inserting data into db
bool success = dal.Insert(u);
if (success == true)
{
MessageBox.Show("User Successfully created.");
clear();
}
else
{
MessageBox.Show("Failed to add new user.");
}
//Refreshing data grid view
DataTable dt = dal.Select();
dgv_Users.DataSource = dt;
}
private void btn_login_Click(object sender, EventArgs e)
{
if (tb_password.TextLength * tb_password.TextLength >= 36)
{
if (BLL_User.login(tb_userName, tb_password))
{
BLL_User.showFormRole(BLL_User.getRole(tb_userName.Text), this, new PresentationTier.BanHang.FormMainBanHang(),
new PresentationTier.CongNo.FormMainCongNo(), new PresentationTier.Kho.FormMainKho(),
new PresentationTier.NhanSu.frmMainNhanSu(), new PresentationTier.PhongKeHoach.FormMainPhongKeHoach(),
new PresentationTier.TichHop.FormAdmin());
}
else
{
MessageBox.Show("Thất Bại");
}
}
else
{
MessageBox.Show("Sai Định Dạng");
}
}
private void btn_Update_Click(object sender, EventArgs e)
{
//Get the values from User UI
u.id = Convert.ToInt32(txt_UserID.Text);
u.first_name = txt_FirstName.Text;
u.last_name = txt_LastName.Text;
u.email = txt_Email.Text;
u.username = txt_UserName.Text;
u.password = txt_Password.Text;
u.contact = txt_Contact.Text;
u.address = txt_Address.Text;
u.gender = cmb_Gender.Text;
u.user_type = cmb_UserType.Text;
u.added_date = DateTime.Now;
//getting username of the logged in user
string loggedUser = frm_Login.loggedIn;
BLL_User usr = dal.GetIdFromUsername(loggedUser);
u.added_by = usr.id;
//Updating data into database
bool success = dal.Update(u);
if (success == true)
{
MessageBox.Show("User successfully updated");
clear();
}
else
{
MessageBox.Show("Failed to update user");
}
//Refreshing data grid view
DataTable dt = dal.Select();
dgv_Users.DataSource = dt;
}
public bool Delete(BLL_User u)
{
bool isSuccess = false;
SqlConnection conn = new SqlConnection(myconnstrng);
try
{
string sql = "DELETE FROM tbl_users WHERE id=@id";
SqlCommand cmd = new SqlCommand(sql, conn);
cmd.Parameters.AddWithValue("@id", u.id);
conn.Open();
int rows = cmd.ExecuteNonQuery();
if (rows > 0)
{
//Query Successfull
isSuccess = true;
}
else
{
//query failed
isSuccess = false;
}
}
catch (Exception ex)
{
MessageBox.Show(ex.Message);
}
finally
{
conn.Close();
}
return(isSuccess);
}
private void btn_Add_Click(object sender, EventArgs e)
{
//Getting data from UI
p.name = txt_Name.Text;
p.category = cmb_Category.Text;
p.description = txt_Description.Text;
p.rate = decimal.Parse(txt_Rate.Text);
p.qty = 0;
p.added_date = DateTime.Now;
//getting username of the logged in user
string loggedUser = frm_Login.loggedIn;
BLL_User usr = udal.GetIdFromUsername(loggedUser);
p.added_by = usr.id;
// Inserting data into db
bool success = pdal.Insert(p);
if (success == true)
{
MessageBox.Show("Product Added Successfully.");
clear();
}
else
{
MessageBox.Show("Failed to add new product.");
}
//Refreshing data grid view
DataTable dt = pdal.Select();
dgv_Products.DataSource = dt;
}
public JsonResult LoginSystem()
{
#region 后台系统登录
string UserName = RequestParameters.Pstring("UserName");
string Password = RequestParameters.Pstring("Password");
if (UserName.Length <= 0)
{
var sReturnModel = new ReturnMessageModel();
sReturnModel.ErrorType = 2;
sReturnModel.MessageContent = "用户名不能为空.";
return(Json(sReturnModel));
}
if (Password.Length <= 0)
{
var sReturnModel = new ReturnMessageModel();
sReturnModel.ErrorType = 2;
sReturnModel.MessageContent = "密码不能为空.";
return(Json(sReturnModel));
}
// string retVal = "";
#region
try
{
var usersBll = new BLL_User();
var item = usersBll.GetObjectByUser(UserName, HashEncrypt.BgPassWord(Password));
if (item != null)
{
if (item.user_Sign == (int)StageMode.Normal)
{
Session["EQUI_USERID"] = HashEncrypt.EncryptQueryString(item.user_Id.ToString());
var sReturnModel = new ReturnMessageModel();
sReturnModel.ErrorType = 1;
sReturnModel.MessageContent = "登录成功.";
return(Json(sReturnModel));
}
else
{
var sReturnModel = new ReturnMessageModel();
sReturnModel.ErrorType = 2;
sReturnModel.MessageContent = "该账号已停用.";
return(Json(sReturnModel));
}
// retVal = "该账号已停用."; //登录成功
}
else
{
var sReturnModel = new ReturnMessageModel();
sReturnModel.ErrorType = 2;
sReturnModel.MessageContent = "账号或密码错误.";
return(Json(sReturnModel));
}
}
catch (Exception ex)
{
var sReturnModel = new ReturnMessageModel();
sReturnModel.ErrorType = 2;
sReturnModel.MessageContent = "系统异常:" + ex.Message;
return(Json(sReturnModel));
// retVal = "1系统异常:" ;
}
#endregion
//if (retVal == "1")
//{
// var sReturnModel = new ReturnMessageModel();
// sReturnModel.ErrorType = 1;
// sReturnModel.MessageContent = "登录成功.";
// return Json(sReturnModel);
//}
//else
//{
// var sReturnModel = new ReturnMessageModel();
// sReturnModel.ErrorType = 2;
// sReturnModel.MessageContent = retVal;
// return Json(sReturnModel);
//}
#endregion
}
private void FormAdmin_Activated(object sender, EventArgs e)
{
BLL_User.LoadUser(tw_ds);
}
// GET: Home
public ActionResult Index(int page = 1)
{
if (Request.Cookies["BorjiShop"] != null)
{
string rememberMe = Request.Cookies["BorjiShop"].Value;
if (!string.IsNullOrEmpty(rememberMe))
{
var user = new BLL_User().ExistRememberMe(rememberMe);
if (user != null)
{
Session["User"] = user;
}
}
}
BLL_Brand dbBrand = new BLL_Brand();
BLL_Piece dbPiece = new BLL_Piece();
BLL_Device dbDevice = new BLL_Device();
BLL_PieceType dbPieceType = new BLL_PieceType();
var brandList = dbBrand.GetAllBrand();
var deviceList = dbDevice.GetAllDevice();
var pieceTypeList = dbPieceType.GetAllPieceType();
ViewBag.Brands = dbBrand.GetAllBrand();
ViewBag.Devices = deviceList;
ViewBag.PieceType = pieceTypeList;
List <Piece> slider = dbPiece.GetAllPiece().Where(p => p.IsSlider).Take(5).ToList();
var finalSlider = new List <FinalPiece>();
foreach (var piece in slider)
{
FinalPiece p = new FinalPiece();
p.ID = piece.ID;
p.BrandId = piece.BrandId;
p.BrandName = brandList.FirstOrDefault(b => b.ID == piece.BrandId)?.EnglishName;
p.DeviceId = piece.DeviceId;
p.DeviceName = deviceList.FirstOrDefault(d => d.ID == piece.DeviceId)?.EnglishName;
p.PieceTypeId = piece.PieceTypeId;
p.PieceTypeName = pieceTypeList.FirstOrDefault(d => d.ID == piece.PieceTypeId)?.PersianName;
p.Price = piece.Price;
p.FileName = piece.FileName;
//p.Date = piece.Date.ToString("yyyy/MM/dd");
p.Date = PublicFunction.ConvertMiladiToShamsi(piece.CreateDate);
p.IsSlider = piece.IsSlider;
finalSlider.Add(p);
}
ViewBag.Slider = finalSlider;
List <Piece> pieces = dbPiece.GetPiecsList(page).ToList();
var finalPieces = new List <FinalPiece>();
foreach (var piece in pieces)
{
FinalPiece p = new FinalPiece();
p.ID = piece.ID;
p.BrandId = piece.BrandId;
p.BrandName = brandList.FirstOrDefault(b => b.ID == piece.BrandId)?.EnglishName;
p.DeviceId = piece.DeviceId;
p.DeviceName = deviceList.FirstOrDefault(d => d.ID == piece.DeviceId)?.EnglishName;
p.PieceTypeId = piece.PieceTypeId;
p.PieceTypeName = pieceTypeList.FirstOrDefault(d => d.ID == piece.PieceTypeId)?.PersianName;
p.Price = piece.Price;
p.FileName = piece.FileName;
p.Date = PublicFunction.ConvertMiladiToShamsi(piece.CreateDate);
p.IsSlider = piece.IsSlider;
finalPieces.Add(p);
}
ViewBag.Pieces = finalPieces;
ViewBag.Page = page;
ViewBag.LastPage = dbPiece.LastPageNumber();
return(View());
}
private void tw_ds_AfterSelect(object sender, TreeViewEventArgs e)
{
lb_userName.Text = tw_ds.SelectedNode.Text;
BLL_User.LoadRole(BLL_User.getRole(lb_userName.Text.Trim().ToLower()), rb_no, rb_banHang,
rb_congNo, rb_kho, rb_nhanSu, rb_pkh, rb_admin);
}
private void btn_save_Click(object sender, EventArgs e)
{
BLL_User.addUser(tb_userName, tb_pass, tb_config, cbb_role);
}