public bool UpdatePassword(string newPassword, out string errorMessage) { if (!IsPasswordValid(newPassword, out errorMessage)) { return(false); } if (!ValidateUser(out errorMessage)) { return(false); } SQLDatabaseReporting sql = new SQLDatabaseReporting(); SqlParameter affectedRows; SQLParamList sqlParams = new SQLParamList() .Add("@UserID", UserID) .Add("@NewPassword", newPassword) .AddOutputParam("@AffectedRows", 4, out affectedRows); sql.ExecStoredProcedureDataTable("spCOM_UpdatePassword", sqlParams); if (sql.HasError) { errorMessage = "There was a database level error while attempting to save this user. Please contact the administrator if this error persists."; return(false); } else if (Conversion.StringToInt(affectedRows.Value.ToString(), 0) == 0) { errorMessage = "Invalid user specified. Unable to change password."; return(false); } return(true); }
/// <summary> /// Add new user /// </summary> /// <returns></returns> public static string AddNewuser(string userName, string password, string firstName, string lastName, string email, string phone, int addToGroup, int createdUserID, out int msg) { SQLDatabaseReporting sql = new SQLDatabaseReporting(); SQLParamList sqlParams = new SQLParamList(); SqlParameter userId = new SqlParameter("@UserID", SqlDbType.Int); userId.Direction = ParameterDirection.Output; sqlParams.Add("@Username", userName); sqlParams.Add("@Password", password); sqlParams.Add("@ClientID", Config.clientId); sqlParams.Add("@CreateUserID", createdUserID); sqlParams.Add("@Email", email); sqlParams.Add("@Phone", phone); sqlParams.Add("@FirstName", firstName); sqlParams.Add("@LastName", lastName); sqlParams.Add("@ExpirePassword", true); sqlParams.Add("@AddToGroup", addToGroup); sqlParams.Add(userId); sql.ExecStoredProcedureDataTable("spCOM_CreateNewUser", sqlParams); if (sql.HasError) { msg = 1; return(UserResource.Error_UnableToSaveUser); } else { msg = 0; return(UserResource.Message_AddSuccess); } }
public void LogInUser(string usernameOrEmail, string password, bool useEmailForLogin, int clientID, out int outputValue) { outputValue = -1; //Set up the sql request SQLDatabaseReporting sql = new SQLDatabaseReporting(); SQLParamList sqlParams = new SQLParamList(); sqlParams.Add(useEmailForLogin ? "@Email" : "@Username", usernameOrEmail); SqlParameter outParam; sqlParams.Add("@Password", password) .Add("@ClientID", clientID) .Add("@IP", RequestVars.GetRequestIPv4Address()) .AddOutputParam("@OutputValue", 4, out outParam); //Try and get the user's info DataTable dt = sql.ExecStoredProcedureDataTable("spCOM_WebReportingLogon", sqlParams); if (!sql.HasError) { outputValue = Conversion.StringToInt(outParam.Value.ToString(), -1); if (outputValue == 0 && dt.Rows.Count > 0) { //Success! SetUserDataFromDr(dt.Rows[0]); //SessionWrapper.Add<UserInfoModel>("AccountDetail", this); return; } } UserID = -1; }
/// <summary> /// Updating existing user with new password /// </summary> /// <param name="newPswd"></param> /// <param name="outputValue"></param> public bool UpdatePassword(int userId, string newPswd, out string outputMsg) { if (!CommonFunctions.IsPasswordValid(newPswd, out outputMsg)) { return(false); } if (!SubFunctions.ValidateUser(out outputMsg)) { return(false); } SQLDatabaseReporting sql = new SQLDatabaseReporting(); SqlParameter affectedRows; SQLParamList sqlParams = new SQLParamList() .Add("@UserID", userId) .Add("@NewPassword", newPswd) .AddOutputParam("@AffectedRows", 4, out affectedRows); sql.ExecStoredProcedureDataTable("spCOM_UpdatePassword", sqlParams); if (sql.HasError) { outputMsg = AccountResource.Error_DatabaseLevel; return(false); } else if (Conversion.StringToInt(affectedRows.Value.ToString(), 0) == 0) { outputMsg = AccountResource.Error_InvalidUserCantChangePassword; return(false); } return(true); }
/// <summary> /// Load user details /// </summary> /// <returns></returns> public DataTable LoadUserDetails(int userId) { SQLDatabaseReporting sql = new SQLDatabaseReporting(); SQLParamList sqlParams = new SQLParamList(); sqlParams.Add("@UserID", userId); DataTable dt = sql.ExecStoredProcedureDataTable("spAdmin_User_Get", sqlParams); if (!sql.HasError) { return(dt); } return(null); }
/// <summary> /// Get list of Call Center follow-up questions /// </summary> /// <returns></returns> public static DataTable GetQuestions(string rptType) { SQLDatabaseReporting sql = new SQLDatabaseReporting(); SQLParamList sqlParams = new SQLParamList(); sqlParams.Add("@ReportType", rptType); DataTable dt = sql.ExecStoredProcedureDataTable("spAdmin_Question_List", sqlParams); if (!sql.HasError) { return(dt); } return(null); }
/// <summary> /// Get Report per question based on month /// </summary> /// <returns></returns> public static DataTable GetMonthlyRecordOfQuestion(string rptType, string QsnId, int fromMnth, int toMnth) { SQLDatabaseReporting sql = new SQLDatabaseReporting(); SQLParamList sqlParams = new SQLParamList(); sqlParams.Add("@ReportSelection", rptType); sqlParams.Add("@Question", QsnId); sqlParams.Add("@FromMnth", fromMnth); sqlParams.Add("@ToMnth", toMnth); DataTable dt = sql.ExecStoredProcedureDataTable("sp_GetMonthlyRecordsOfQuestion", sqlParams); if (!sql.HasError) { return(dt); } return(null); }
public static string ResetPassword(string email) { SqlParameter rowsUpdated; SqlParameter output; SQLDatabaseReporting sql = new SQLDatabaseReporting(); SQLParamList sqlParams = new SQLParamList() .Add("@Email", email) .Add("@ClientID", Config.ClientID) .AddOutputParam("@OutputCode", 4, out output) .AddOutputParam("@RowCount", 4, out rowsUpdated); DataTable dt = sql.ExecStoredProcedureDataTable("spCOM_PasswordReset", sqlParams); if (sql.HasError || Int32.Parse(rowsUpdated.Value.ToString()) == 0) { return(null); } return(dt.Rows[0]["GUID"].ToString()); }
/// <summary> /// Gets a user's information from the database using GUID. /// </summary> public string GetUser(string guid) { SQLDatabaseReporting sql = new SQLDatabaseReporting(); //Try and get the user's info DataTable dt = sql.ExecStoredProcedureDataTable("spCOM_LoadUserData", new SqlParameter("@GUID", guid)); if (!sql.HasError) { if (dt.Rows.Count > 0) { //Success! //SetUserDataFromDr(dt.Rows[0]); return(dt.Rows[0]["Email"].ToString()); } } // UserID = -1; return(null); }
/// <summary> /// Gets a user's information from the database using UserID. /// </summary> public string GetUserByUserId(string userId) { SQLDatabaseReporting sql = new SQLDatabaseReporting(); //Try and get the user's info DataTable dt = sql.ExecStoredProcedureDataTable("spCOM_LoadUserData", new SqlParameter("@UserID", userId)); if (!sql.HasError) { if (dt.Rows.Count > 0) { return(dt.Rows[0]["Email"].ToString()); } else { return(null); } } return(null); }
/// <summary> /// Delete user from list /// </summary> /// <returns></returns> public static int DeleteUser(int userID) { SQLDatabaseReporting sql = new SQLDatabaseReporting(); SQLParamList sqlParams = new SQLParamList(); SqlParameter output; SqlParameter rowsUpdated; sqlParams.Add("@UserID", userID); sqlParams.Add("@ClientID", Config.clientId); sqlParams.AddOutputParam("@OutputCode", 4, out output); sqlParams.AddOutputParam("@RowCount", 4, out rowsUpdated); DataTable dt = sql.ExecStoredProcedureDataTable("spCOM_DeleteUser", sqlParams); if (!sql.HasError) { return(Convert.ToInt32(dt.Rows[0]["AffectedRows"])); } return(0); }
/// <summary> /// Update user /// </summary> /// <returns></returns> public static string UpdateUser(int userId, int modifiedUserID, string firstName, string lastName, string email, string phone, int groupId, int status) { SQLDatabaseReporting sql = new SQLDatabaseReporting(); SQLParamList sqlParams = new SQLParamList(); sqlParams.Add("@UserID", userId); sqlParams.Add("@FirstName", firstName); sqlParams.Add("@LastName", lastName); sqlParams.Add("@Email", email); sqlParams.Add("@Phone", phone); sqlParams.Add("@ModifiedUserID", modifiedUserID); sqlParams.Add("@GroupID", groupId); sqlParams.Add("@Active", status); sql.ExecStoredProcedureDataTable("spAdmin_User_Update", sqlParams); if (sql.HasError) { return(UserResource.Error_UnableToUpdateUser); } else { return(UserResource.Message_UpdateSuccess); } }