protected void btnLogin_Click(object sender, EventArgs e) { SAS.Business.User bizUser = new Business.User(); SAS.Entity.User user = null; MessageBox message = new MessageBox(); lblMessage.Text = string.Empty; lblMessage.Visible = false; message = bizUser.Authenticate(txtUserName.Text, txtPassword.Text); if (message.Type == MessageType.Success && message.Entity != null) { user = (Entity.User)message.Entity; Session["USER_ID"] = user.Id; Session["LOGIN_ID"] = user.LoginId; Session["USER_NAME"] = user.UserName; Response.Redirect("~/Forms/Masters/Employee.aspx"); } else { Session.RemoveAll(); wmbLogin.SetMessage(message); } }
public MessageBox Authenticate(string loginId, string password) { try { MessageBox message = new MessageBox(); Entity.User validUser = null; Data.UserAuthentication userAuthentication = new Data.UserAuthentication(); DataSet userData = new DataSet(); userData = userAuthentication.Authenticate(loginId, password); if (userData != null && userData.Tables.Count > 0 && userData.Tables[0].Rows.Count > 0) { DataRow userRow = userData.Tables[0].Rows[0]; validUser = new Entity.User(); validUser.Id = Convert.ToInt32(userRow["id"]); validUser.LoginId = userRow["login_id"].ToString(); validUser.Password = userRow["password"].ToString(); validUser.UserName = userRow["user_name"].ToString(); validUser.InvalidLoginAttempts = Convert.ToInt32(userRow["invalid_login_attempts"]); validUser.IsLocked = Convert.ToBoolean(userRow["is_locked"]); if (validUser.IsLocked) { message.Type = MessageType.Warning; message.MessageTitle = "Your account has been lcoked. Please contact System Administrator."; } else if (!validUser.IsLocked && !validUser.Password.Equals(password)) { message.Type = MessageType.Warning; message.MessageTitle = "Invalid Authentication. You are left with only " + (4 - validUser.InvalidLoginAttempts) + " attempts."; } else if (validUser.Password.Equals(password)) { message.Entity = validUser; message.Type = MessageType.Success; message.MessageTitle = "Authentication done successfully."; } else { message.Type = MessageType.Failure; message.MessageTitle = "Invalid Authentication. Please re-login with valid Login Id and Password."; } } else { message.Type = MessageType.Failure; message.MessageTitle = "Invalid Authentication. Please re-login with valid Login Id and Password."; } return message; } catch { throw; } }
public void SetMessage(MessageBox message) { lblMessageTitle.Text = message.MessageTitle; switch (message.Type) { case MessageType.Success: pnlWebMessageBox.CssClass = "message-box message-success"; divIcon.Attributes["class"] = "message-icon message-icon-success"; break; case MessageType.Failure: pnlWebMessageBox.CssClass = "message-box message-failure"; divIcon.Attributes["class"] = "message-icon message-icon-failure"; break; case MessageType.Warning: pnlWebMessageBox.CssClass = "message-box message-warning"; divIcon.Attributes["class"] = "message-icon message-icon-warning"; break; } }