API tools faq
paste
Advertisement
ashifur_malia

default.aspx.cs

ashifur_malia
Mar 30th, 2016
116
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.31 KB | None | 0 0
raw download clone embed print report
  1. using System;
  2. using System.Collections.Generic;
  3. using System.Linq;
  4. using System.Web;
  5. using System.Web.UI;
  6. using System.Web.UI.WebControls;
  7. using System.Web.Configuration;
  8. using System.Data;
  9. using System.Data.SqlClient;
  10.  
  11. public partial class _Default : System.Web.UI.Page
  12. {
  13.  
  14. //adding connection string to page and adding query to enter user data into database
  15. private readonly string dbconnection = WebConfigurationManager.ConnectionStrings["mumsDiaryConnectionString"].ConnectionString;
  16. private const string querySingupUser = "INSERT INTO [reg_user](ID,first,last,email,password,suburb,postcode,state,country) VALUES(@id,@firstname,@lastname,@email,@password,@suburb,@postcode,@state,@country)";
  17. private const string queryLoginUser = "SELECT COUNT(*) FROM [reg_user] WHERE email=@eml";
  18.  
  19.  
  20. protected void Page_Load(object sender, EventArgs e)
  21. {
  22.  
  23. }
  24.  
  25.  
  26.  
  27. protected void reg_submit_Click(object sender, EventArgs e)
  28. {
  29. string checkUser = "SELECT COUNT(*) FROM [reg_user] WHERE email='" + reg_email.Text + "'";
  30. if (Page.IsPostBack)
  31. {
  32. using (var conn = new SqlConnection(dbconnection))
  33. using (var comm = new SqlCommand(checkUser, conn))
  34. {
  35. conn.Open();
  36. int userCount = Convert.ToInt32(comm.ExecuteScalar().ToString());
  37. if (userCount == 1)
  38. {
  39. reg_user_exist.Visible = true;
  40. }
  41. conn.Close();
  42. }
  43. }
  44. else {
  45. if (Page.IsValid)
  46. {
  47.  
  48. var first = reg_first.Text;
  49. var last = reg_last.Text;
  50. var email = reg_email.Text;
  51. var pass = reg_pass.Text.GetHashCode().ToString();
  52. var sub = reg_sub.Text;
  53. var state = reg_state.Text;
  54. var post = reg_post.Text;
  55. var country = "Australia";
  56.  
  57.  
  58. // function called to sing up user account
  59. saveUser(first, last, email, pass, sub, post, state, country);
  60.  
  61.  
  62. }
  63. }
  64. }
  65.  
  66.  
  67.  
  68. //function to signup new users
  69. protected void saveUser(string fst, string lst, string eml, string pas, string sub, string post, string stt, string cont)
  70. {
  71. var newGuid = Guid.NewGuid().ToString();
  72. using (var conn = new SqlConnection(dbconnection))
  73. using (var comm = new SqlCommand(querySingupUser, conn))
  74.  
  75. {
  76. conn.Open();
  77.  
  78. comm.Parameters.AddWithValue("@id", newGuid.ToString());
  79. comm.Parameters.Add("@firstname", SqlDbType.NVarChar).Value = fst;
  80. comm.Parameters.Add("@lastname", SqlDbType.NVarChar).Value = lst;
  81. comm.Parameters.Add("@email", SqlDbType.NVarChar).Value = eml;
  82. comm.Parameters.Add("@password", SqlDbType.NVarChar).Value = pas;
  83. comm.Parameters.Add("@suburb", SqlDbType.NVarChar).Value = sub;
  84. comm.Parameters.Add("@postcode", SqlDbType.Int).Value = post;
  85. comm.Parameters.Add("@state", SqlDbType.NVarChar).Value = stt;
  86. comm.Parameters.Add("@country", SqlDbType.NVarChar).Value = cont;
  87. comm.ExecuteNonQuery();
  88. conn.Close();
  89. Session["email"] = eml.ToString();
  90. Session["password"] = pas.ToString();
  91. Response.Redirect("~/Pages/Home_page.aspx");
  92. }
  93. }
  94.  
  95.  
  96.  
  97.  
  98.  
  99.  
  100.  
  101. protected void login_submit_Click(object sender, EventArgs e)
  102. {
  103. var em = login_email.Text;
  104. var pass = login_password.Text.GetHashCode().ToString();
  105. validate_login(em, pass);
  106. }
  107.  
  108.  
  109.  
  110. // function to validate email
  111. protected void validate_login(string em, string pass)
  112. {
  113.  
  114. using (var conn = new SqlConnection(dbconnection))
  115. using (var comm = new SqlCommand(queryLoginUser, conn))
  116.  
  117. {
  118. //checking if the email address exist in the database
  119. conn.Open();
  120. comm.Parameters.Add("@eml", SqlDbType.NVarChar).Value = em; // em is user input email making sure its sqldbtype
  121. int temp = Convert.ToInt32(comm.ExecuteScalar().ToString());
  122. conn.Close();
  123.  
  124. // if email address found
  125. if (temp == 1)
  126. {
  127. string checkingPasswordQuery = "SELECT password FROM [reg_user] WHERE email=@eml";
  128. using (var comm_pass = new SqlCommand(checkingPasswordQuery, conn))
  129. {
  130. conn.Open();
  131. comm_pass.Parameters.Add("@eml", SqlDbType.NVarChar).Value = em;
  132. var db_password = comm_pass.ExecuteScalar().ToString();
  133. conn.Close();
  134.  
  135.  
  136. if(db_password.Equals(pass)) // checking if password match from the database
  137. {
  138. Session["email"] = em;
  139. Session["password"] = pass;
  140. Response.Redirect("~/Pages/Home_page.aspx");
  141. }
  142. else
  143. {
  144. Invalid_pass.Visible = true;
  145. }
  146. }
  147.  
  148. }
  149.  
  150. }
  151.  
  152. }
  153. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!