/// <summary> /// Check blank password and password is matching with given password. /// </summary> /// <param name="username"></param> /// <param name="password"></param> /// <returns></returns> public ErrorItem CheckPassword(NZString username, NZString password) { if (password.IsNull) { ErrorItem item = new ErrorItem(password.Owner, Messages.eValidate.VLM9004.ToString()); return(item); } // ถ้าต้องการเช็คการเข้ารหัส ให้ปรับเป็น true. bool bUseHashPassword = true; //== Check password same with stored on database. UserBIZ userBiz = new UserBIZ(); string hashPassword = string.Empty; if (bUseHashPassword) { hashPassword = userBiz.HashUserPassword(username.StrongValue, password.StrongValue, true); } else { hashPassword = password.StrongValue; } UserDTO userDTO = userBiz.LoadUser(username); if (hashPassword != userDTO.PASS.StrongValue) { ErrorItem item = new ErrorItem(password.Owner, Messages.eValidate.VLM9007.ToString()); return(item); } return(null); }
public bool UpdateUserController(CreateUserDomain userDm) { UserBIZ userBIZ = new UserBIZ(); UserDTO userDTO = new UserDTO(); userDTO.APPLY_DATE.Value = DateTime.Now; userDTO.CRT_BY = CommonLib.Common.CurrentUserInfomation.Username; userDTO.CRT_DATE.Value = DateTime.Now; userDTO.CRT_MACHINE = CommonLib.Common.CurrentUserInfomation.UserCD; userDTO.DATE_FORMAT = userDm.DefaultDateFormat; userDTO.FLG_ACTIVE = userDm.IsActive; userDTO.FLG_RESIGN = userDm.IsResign; userDTO.GROUP_CD = userDm.GroupUser; userDTO.LANG_CD = userDm.DefaultLang; userDTO.LOWER_USER_ACCOUNT = userDm.UserAccount.ToLower(); userDTO.MENU_SET_CD = userDm.MenuSet; if (!userDm.PassWord.IsNull) { userDTO.PASS.Value = userBIZ.HashUserPassword(userDm.UserAccount.StrongValue, userDm.PassWord.StrongValue, true);//userDm.PassWord; userDTO.PASS.Owner = userDm.PassWord.Owner; } userDTO.UPPER_USER_ACCOUNT = userDm.UserAccount.ToUpper(); userDTO.UPD_BY = CommonLib.Common.CurrentUserInfomation.Username; userDTO.UPD_DATE.Value = DateTime.Now; userDTO.UPD_MACHINE = CommonLib.Common.CurrentUserInfomation.UserCD; userDTO.USER_ACCOUNT = userDm.UserAccount; userDTO.FULL_NAME = userDm.UserName; userBIZ.UpdateUser(userDTO); return(true); }
/// <summary> /// /// </summary> /// <param name="userCD"></param> /// <param name="oldPassword"></param> /// <param name="newPassword"></param> /// <param name="confirmNewPassword"></param> /// <returns></returns> /// <exception cref="BusinessException"><c>BusinessException</c>.</exception> public void BizCheckChangePassword(NZString userCD, NZString oldPassword, NZString newPassword, NZString confirmNewPassword) { // UserDAO dao = new UserDAO(CommonLib.Common.CurrentDatabase); UserBIZ biz = new UserBIZ(); // check old password. if (!newPassword.IsNull && !confirmNewPassword.IsNull) { UserDTO dtoUser = biz.LoadUser(userCD); string encPassword = biz.HashUserPassword(userCD.StrongValue, oldPassword.StrongValue, true); if (!Equals(encPassword, dtoUser.PASS.StrongValue)) { ErrorItem error = new ErrorItem(confirmNewPassword.Owner, Messages.eValidate.VLM9010.ToString()); throw new BusinessException(error); } if (!Equals(newPassword.Value, confirmNewPassword.Value)) { ErrorItem error = new ErrorItem(confirmNewPassword.Owner, Messages.eValidate.VLM9009.ToString()); throw new BusinessException(error); } } }