private void LogHistoryLoginSuccess(string user_id, string user_type, string user) { try { con.Open(); //Query to log history string query3 = "INSERT INTO `loghistory`(`account_id`, `account_type`,`username`, `log`) VALUES (@id, @accid,@user, @logs)"; MySqlCommand cmd3 = new MySqlCommand(query3, con); cmd3.Parameters.AddWithValue("@id", user_id); cmd3.Parameters.AddWithValue("@accid", user_type); cmd3.Parameters.AddWithValue("@user", user); cmd3.Parameters.AddWithValue("@logs", user + " has been succesfully login."); cmd3.ExecuteNonQuery(); con.Close(); } catch { Notification.NotificationConnectionError a = new Notification.NotificationConnectionError(); a.ShowDialog(); } }
private void BtnLogin_Click(object sender, EventArgs e) { GlobalVar.user = TxtUsername.Text; if (TxtUsername.Text == "Username" && TxtPassword.Text == "Password") { label10.Text = "Username and Password can't be blank!"; } else if (TxtPassword.Text == "Password" && TxtUsername.Text == "") { label10.Text = "Username and Password can't be blank!"; } else if (TxtUsername.Text == "Username" && TxtPassword.Text == "") { label10.Text = "Username and Password can't be blank!"; } else if (TxtUsername.Text == "Username") { label10.Text = "Username can't be blank! "; } else if (TxtPassword.Text == "Password") { label10.Text = "Password can't be blank! "; } else { try { con.Open(); string query = "SELECT account_type, account_id, status FROM account WHERE username = @user and password = @pass"; MySqlCommand cmd = new MySqlCommand(query, con); cmd.Parameters.AddWithValue("@user", TxtUsername.Text); cmd.Parameters.AddWithValue("@pass", SHA256Hasher.ComputeSha256Hash(TxtPassword.Text)); MySqlDataReader reader = cmd.ExecuteReader(); while (reader.Read()) { GlobalVar.user_type = reader["account_type"].ToString(); GlobalVar.user_id = reader["account_id"].ToString(); GlobalVar.status = reader["status"].ToString(); GlobalVar.username = reader["username"].ToString(); } con.Close(); if (GlobalVar.user_type == "") { label10.Text = "Incorrect Password or Username. "; } else { if (GlobalVar.status.Equals("Activated")) { LogHistoryLoginSuccess(GlobalVar.user_id, GlobalVar.user_type, TxtUsername.Text); if (GlobalVar.user_type.Equals("Admin")) { FrmDashboard a = new FrmDashboard(); a.Show(); this.Hide(); } else { label10.Text = "Account is not activated."; } } } } catch { Notification.NotificationConnectionError a = new Notification.NotificationConnectionError(); a.ShowDialog(); } } }