//******************* buton Login end *****************
//******************* btn_Signup_Click *****************
private void btn_Signup_Click(object sender, RoutedEventArgs e)
{
if (PasswdBox.Password.Length != 0)
{
if (Insert_user(user_name.Text, PasswdBox.Password))
{
MessageBox.Show("User '" + user_name.Text + "' de tip 'Utilizator neautentificat' s-a creat cu succes.\n\nDoar Administratorul va putea sa autorizeze noul cont de utilizator!", "User neautentificat - done", MessageBoxButton.OK, MessageBoxImage.Information);
}
}
else
{
MessageBox.Show("Va rugam sa introduceti o parola valida", "Eroare parola", MessageBoxButton.OK, MessageBoxImage.Warning);
}
user_name.Text = ""; // sterge campul user name
PasswdBox.Clear(); // sterge campul password
}
//****************** Insert_user ******************
//****************** Verifica_userName_DEX_DB ******************
public bool Verifica_User_DEX_DB(string userSelected, string userPassword)
{
try {
using (SqlConnection connection = new SqlConnection(builder.ConnectionString)) {
connection.Open();
int var_Id_tip_utilizator = 0;
string var_password = "";
string var_userName = "";
//https://www.w3schools.com/sql/sql_join.asp
sb.Clear();
sb.Append("USE " + db_name + "; ");
sb.Append("SELECT Nume, Parola, Tip_utilizator, Utilizatori.Id_tip_utilizator FROM Utilizatori ");
sb.Append(" INNER JOIN Utilizatori_Tip ON Utilizatori.Id_tip_utilizator=Utilizatori_Tip.Id_tip_utilizator");
sb.Append(" WHERE Utilizatori.Nume = @0");
sql = sb.ToString();
using (SqlCommand command = new SqlCommand(sql, connection)) {
command.Parameters.AddWithValue("@0", userSelected);
command.ExecuteNonQuery();
using (SqlDataReader reader = command.ExecuteReader()) {
while (reader.Read())
{
//Console.WriteLine("\ntest\n{0}\n{1}\n{2}\n{3}\n", reader.GetString(0), reader.GetString(1), reader.GetString(2), reader.GetInt32(3));
var_userName = reader.GetString(0);
var_password = reader.GetString(1);
tip_utilizator = reader.GetString(2);
var_Id_tip_utilizator = reader.GetInt32(3);
}
}
}
if (var_Id_tip_utilizator != 0) // daca se gaseste userul in baza de date
{
if (var_Id_tip_utilizator == 3) // daca utilizatorul este de tip neautentificat
{
MessageBox.Show("User '" + var_userName + "' este de tip Utilizator neautentificat.\n\nDoar Administratorul va putea sa autorizeze contul de utilizator!", "User neautentificat", MessageBoxButton.OK, MessageBoxImage.Information);
user_name.Text = ""; // sterge campul user name
PasswdBox.Clear(); // sterge campul password
connection.Close();
return(false);
}
else
{
if (userPassword != var_password) // daca parola nu este cea corecta
{
MessageBox.Show("Parola introdusa este gresita!", "Parola gresita", MessageBoxButton.OK, MessageBoxImage.Information);
PasswdBox.Clear(); // sterge campul password
connection.Close();
return(false);
}
else // daca autentificarea s-a facut cu success...
{
user_name.Text = "";// sterge campul user name
PasswdBox.Clear(); // sterge campul password
connection.Close();
return(true);
}
}
}
else // daca userul nu se afla in baza de date
{
MessageBox.Show("User name '" + userSelected + "' nu este inregistrat.\n\nVa rugam sa alegeti un Nume si o Parola,\napoi selectati 'Sign up' pentru a crea un nou cont.\n\nAtentie, contul nou creat este de tip utilizator neautentificat.\nDoar Administratorul va putea sa autorizeze noul cont de utilizator!", "User not found", MessageBoxButton.OK, MessageBoxImage.Error);
user_name.Text = ""; // sterge campul user name
PasswdBox.Clear(); // sterge campul password
connection.Close();
return(false);
}
}
}
catch (SqlException e) {
Afiseaza_mesaj_SQL(e);
return(false);
}
}
