public int LoginUser(int employeeID, string hashedPassword)
{
using (var db = new FASTDBEntities())
{
EmployeeProcess employeeProcess = new EmployeeProcess();
if (employeeProcess.GetEmployeeByID(employeeID) != null)
{
var registrations = from reg in db.Registrations
where reg.EmployeeID == employeeID &&
reg.Password == hashedPassword
select reg;
if (registrations.Count() > 0)
{
Helpers.Logger.AddToAuditTrail(Logger.UserAction.LOGIN, employeeID, "SUCCESSFUL");
return(ReturnValues.SUCCESS);
}
else
{
Helpers.Logger.AddToAuditTrail(Logger.UserAction.LOGIN, employeeID, "FAILED");
return(ReturnValues.FAILED);
}
}
}
Helpers.Logger.AddToAuditTrail(Logger.UserAction.LOGIN, employeeID, "NOT FOUND");
return(ReturnValues.NOT_FOUND);
}
public int ResetPassword(int employeeID)
{
using (var db = new FASTDBEntities())
{
EmployeeProcess employeeProcess = new EmployeeProcess();
Employee employee = employeeProcess.GetEmployeeByID(employeeID);
if (employee != null)
{
var registrations = from reg in db.Registrations
where reg.EmployeeID == employeeID
select reg;
if (registrations.Count() > 0)
{
foreach (Registration regUser in registrations)
{
string password;
if (ConfigurationHelper.SendEmail)
{
password = System.Web.Security.Membership.GeneratePassword(6, 0);
password = Regex.Replace(password, @"[^a-zA-Z0-9]", m => "$");
}
else
{
//Use the current user employee ID if email is out
password = employeeID.ToString();
}
regUser.Password = Providers.MD5HashProvider.CreateMD5Hash(password);
regUser.DateStamp = DateTime.Now;
db.SaveChanges();
if (ConfigurationHelper.SendEmail)
{
email.SendUserRegistrationEmail(EmailProvider.EmailType.RESET_PASSWORD, employeeID,
employee.FirstName + " " + employee.LastName, employee.EmailAddress, password);
}
Helpers.Logger.AddToAuditTrail(Logger.UserAction.RESET_PASSWORD, employeeID, "SUCCESSFUL");
return(ReturnValues.SUCCESS);
}
}
}
}
Helpers.Logger.AddToAuditTrail(Logger.UserAction.RESET_PASSWORD, employeeID, "FAILED : NOT FOUND");
return(ReturnValues.NOT_FOUND);
}
public int ChangePassword(int employeeID, string oldPassword, string newPassword)
{
using (var db = new FASTDBEntities())
{
EmployeeProcess employeeProcess = new EmployeeProcess();
Employee employee = employeeProcess.GetEmployeeByID(employeeID);
if (employeeProcess.GetEmployeeByID(employeeID) != null)
{
var registrations = from reg in db.Registrations
where reg.EmployeeID == employeeID &&
reg.Password == oldPassword
select reg;
if (registrations.Count() > 0)
{
foreach (Registration userReg in registrations)
{
userReg.Password = newPassword;
}
db.SaveChanges();
//TODO : Email employee about the successful change
if (ConfigurationHelper.SendEmail)
{
email.SendUserRegistrationEmail(EmailProvider.EmailType.CHANGE_PASSWORD, 0,
employee.FirstName + " " + employee.LastName, employee.EmailAddress, "");
}
Helpers.Logger.AddToAuditTrail(Logger.UserAction.CHANGE_PASSWORD, employeeID, "SUCCESSFUL");
return(ReturnValues.SUCCESS);
}
}
}
Helpers.Logger.AddToAuditTrail(Logger.UserAction.CHANGE_PASSWORD, employeeID, "FAILED");
return(ReturnValues.FAILED);
}
public int RegisterUser(int employeeID)
{
using (var db = new FASTDBEntities())
{
EmployeeProcess employeeProcess = new EmployeeProcess();
Registration[] registrants = (from reg in db.Registrations
where reg.EmployeeID == employeeID
select reg).ToArray();
Employee employee = employeeProcess.GetEmployeeByID(employeeID);
if (employee != null)
{
if (registrants.Count() > 0)
{
Helpers.Logger.AddToAuditTrail(Logger.UserAction.REGISTRATION, employeeID, "FAILED : USER EXISTS");
return(ReturnValues.FAILED);
}
else
{
Registration newReg = new Registration();
newReg.EmployeeID = employeeID;
string password;
if (ConfigurationHelper.SendEmail)
{
password = System.Web.Security.Membership.GeneratePassword(8, 0);
password = Regex.Replace(password, @"[^a-zA-Z0-9]", m => "$");
}
else
{
//Use the current user employee ID if email is out
password = employeeID.ToString();
}
newReg.Password = Providers.MD5HashProvider.CreateMD5Hash(password);
newReg.DateStamp = DateTime.Now;
newReg.Status = 0;
db.Registrations.Add(newReg);
db.SaveChanges();
if (ConfigurationHelper.SendEmail)
{
email.SendUserRegistrationEmail(EmailProvider.EmailType.REGISTRATION, employeeID,
employee.FirstName + " " + employee.LastName, employee.EmailAddress, password);
}
Helpers.Logger.AddToAuditTrail(Logger.UserAction.REGISTRATION, employeeID, "SUCCESSFUL");
return(ReturnValues.SUCCESS);
}
}
}
Helpers.Logger.AddToAuditTrail(Logger.UserAction.REGISTRATION, employeeID, "NOT FOUND");
return(ReturnValues.NOT_FOUND);
}
