private void metroTextButton1_Click(object sender, EventArgs e) { frmPassword frm = new frmPassword(); frm.Show(this); }
private void btnLogin_Click(object sender, EventArgs e) { // Initilizing username username = txtUserName.Text; string hash = txtPassword.Text.Trim(); string pass = ConverterHash.Encrypt(hash); try { conn = new SqlConnection(cs.DBconn); conn.Open(); //validating username if (txtUserName.Text != "") { SqlDataAdapter uname = new SqlDataAdapter("Select Username from employeeLogin where Username='******'", conn); DataTable unameData = new DataTable(); uname.Fill(unameData); if ((txtUserName.Text == "administrator") && (txtPassword.Text == "password")) { frmMain form = new frmMain(); form.Show(); this.Hide(); } else if (unameData.Rows[0]["Username"] == DBNull.Value) { } else if (username == unameData.Rows[0]["Username"].ToString()) { //Retreiving all datas from table SqlDataAdapter login = new SqlDataAdapter("Select * from employeeLogin where Username='******'", conn); DataTable loginData = new DataTable(); login.Fill(loginData); String EmpID; //validating pass word if (pass == "") { MetroMessageBox.Show(this, "Password field cannot be empty"); } else if (pass == loginData.Rows[0]["Pass"].ToString()) { // checking for the account status if (loginData.Rows[0]["ActiveStat"].ToString() == "Active") { //checking whether it's the initial login //retreiving data from employee table and login EmpID = loginData.Rows[0]["EmpID"].ToString(); SqlDataAdapter emp = new SqlDataAdapter("Select Mobile from Employee where EmpID='" + EmpID + "'", conn); DataTable empData = new DataTable(); emp.Fill(empData); string sub, mobile, mobilehashed; sub = empData.Rows[0]["Mobile"].ToString(); mobile = sub.Substring(sub.Length - 6); mobilehashed = ConverterHash.Encrypt(mobile); //checking whether password is same as the last for digit of mobile number. if (pass == mobilehashed) { MetroMessageBox.Show(this, "Password is the default one. Last six digit of your mobile number. Please change it to a custom one to continue. You fille be redirected to change your password. Please change the password to access further"); GlobalAccess.userName = loginData.Rows[0]["Username"].ToString(); frmPassword frm = new frmPassword(); frm.Show(); } else if (pass != mobilehashed) { // access level validation if (loginData.Rows[0]["AccessLevel"].ToString() == "Principal") { GlobalAccess.AccessLevel = loginData.Rows[0]["AccessLevel"].ToString(); GlobalAccess.userName = loginData.Rows[0]["Username"].ToString(); frmMain test = new frmMain(); test.Show(); this.Hide(); } else if (loginData.Rows[0]["AccessLevel"].ToString() == "Management Staff") { GlobalAccess.AccessLevel = loginData.Rows[0]["AccessLevel"].ToString(); GlobalAccess.userName = loginData.Rows[0]["Username"].ToString(); frmMain test = new frmMain(); test.Show(); this.Hide(); } else if (loginData.Rows[0]["AccessLevel"].ToString() == "Clerk") { GlobalAccess.AccessLevel = loginData.Rows[0]["AccessLevel"].ToString(); GlobalAccess.userName = loginData.Rows[0]["Username"].ToString(); frmMain test = new frmMain(); test.Show(); this.Hide(); } else if (loginData.Rows[0]["AccessLevel"].ToString() == "Librarian") { GlobalAccess.AccessLevel = loginData.Rows[0]["AccessLevel"].ToString(); GlobalAccess.userName = loginData.Rows[0]["Username"].ToString(); frmMain test = new frmMain(); test.Show(); this.Hide(); } else if (loginData.Rows[0]["AccessLevel"].ToString() == "Inventory Manager") { GlobalAccess.AccessLevel = loginData.Rows[0]["AccessLevel"].ToString(); GlobalAccess.userName = loginData.Rows[0]["Username"].ToString(); frmMain test = new frmMain(); test.Show(); this.Hide(); } else { MetroMessageBox.Show(this, "User account not setup properly", "Information", MessageBoxButtons.OK, MessageBoxIcon.Warning); } } } // if account is deactive else { MetroMessageBox.Show(this, "Account is blocked contact admin", "Information", MessageBoxButtons.OK, MessageBoxIcon.Warning); } } //password not valid else { ++processed; if (processed == 1) { MetroMessageBox.Show(this, "Invalid username or password", "Warning", MessageBoxButtons.OK, MessageBoxIcon.Warning); } else if (processed == 2) { MetroMessageBox.Show(this, "Invalid username or password", "Warning", MessageBoxButtons.OK, MessageBoxIcon.Warning); } else if (processed == 3) { SqlCommand update = new SqlCommand("Update employeeLogin SET ActiveStat='Blocked' where Username='******'", conn); update.ExecuteNonQuery(); MetroMessageBox.Show(this, "Account blocked", "Warning", MessageBoxButtons.OK, MessageBoxIcon.Warning); } } } else { if (txtPassword.Text == "") { MetroMessageBox.Show(this, "Password field cannot be empty"); txtUserName.Focus(); } } } else { MetroMessageBox.Show(this, "Username cannot be null", "Warning", MessageBoxButtons.OK, MessageBoxIcon.Warning); txtUserName.Focus(); } } catch { MetroMessageBox.Show(this, "No user account created. Contact developer or administrator", "Warning", MessageBoxButtons.OK, MessageBoxIcon.Warning); } finally { conn.Close(); } }
private void btnChange_Click(object sender, EventArgs e) { frmPassword frm = new frmPassword(); frm.Show(this); }