示例#1
0
 private void LogHistoryLoginSuccess(string user_id, string user_type, string user)
 {
     try
     {
         con.Open();
         //Query to log history
         string       query3 = "INSERT INTO `loghistory`(`account_id`, `account_type`,`username`, `log`) VALUES (@id, @accid,@user, @logs)";
         MySqlCommand cmd3   = new MySqlCommand(query3, con);
         cmd3.Parameters.AddWithValue("@id", user_id);
         cmd3.Parameters.AddWithValue("@accid", user_type);
         cmd3.Parameters.AddWithValue("@user", user);
         cmd3.Parameters.AddWithValue("@logs", user + " has been succesfully login.");
         cmd3.ExecuteNonQuery();
         con.Close();
     }
     catch
     {
         Notification.NotificationConnectionError a = new Notification.NotificationConnectionError();
         a.ShowDialog();
     }
 }
示例#2
0
 private void BtnLogin_Click(object sender, EventArgs e)
 {
     GlobalVar.user = TxtUsername.Text;
     if (TxtUsername.Text == "Username" && TxtPassword.Text == "Password")
     {
         label10.Text = "Username and Password can't be blank!";
     }
     else if (TxtPassword.Text == "Password" && TxtUsername.Text == "")
     {
         label10.Text = "Username and Password can't be blank!";
     }
     else if (TxtUsername.Text == "Username" && TxtPassword.Text == "")
     {
         label10.Text = "Username and Password can't be blank!";
     }
     else if (TxtUsername.Text == "Username")
     {
         label10.Text = "Username can't be blank! ";
     }
     else if (TxtPassword.Text == "Password")
     {
         label10.Text = "Password can't be blank! ";
     }
     else
     {
         try
         {
             con.Open();
             string       query = "SELECT account_type, account_id, status FROM account WHERE username = @user and password = @pass";
             MySqlCommand cmd   = new MySqlCommand(query, con);
             cmd.Parameters.AddWithValue("@user", TxtUsername.Text);
             cmd.Parameters.AddWithValue("@pass", SHA256Hasher.ComputeSha256Hash(TxtPassword.Text));
             MySqlDataReader reader = cmd.ExecuteReader();
             while (reader.Read())
             {
                 GlobalVar.user_type = reader["account_type"].ToString();
                 GlobalVar.user_id   = reader["account_id"].ToString();
                 GlobalVar.status    = reader["status"].ToString();
                 GlobalVar.username  = reader["username"].ToString();
             }
             con.Close();
             if (GlobalVar.user_type == "")
             {
                 label10.Text = "Incorrect Password or Username. ";
             }
             else
             {
                 if (GlobalVar.status.Equals("Activated"))
                 {
                     LogHistoryLoginSuccess(GlobalVar.user_id, GlobalVar.user_type, TxtUsername.Text);
                     if (GlobalVar.user_type.Equals("Admin"))
                     {
                         FrmDashboard a = new FrmDashboard();
                         a.Show();
                         this.Hide();
                     }
                     else
                     {
                         label10.Text = "Account is not activated.";
                     }
                 }
             }
         }
         catch
         {
             Notification.NotificationConnectionError a = new Notification.NotificationConnectionError();
             a.ShowDialog();
         }
     }
 }