Zbiór zmian 486 dla trunk/eCard/Expo/login.aspx.cs

Data:

2009-03-25 17:31:18 (17 years ago)

Autor:

marek

Opis:

fixes #139

Pliki:

• trunk/eCard/Expo/login.aspx.cs (zmodyfikowane) (3 diffs)

trunk/eCard/Expo/login.aspx.cs

@@ -2 +2 @@
 using System.Data;
 using System.Configuration;
-using System.Collections;
-using System.Web;
 using System.Web.Security;
-using System.Web.UI;
-using System.Web.UI.WebControls;
-using System.Web.UI.WebControls.WebParts;
-using System.Web.UI.HtmlControls;
 using System.Data.SqlClient;
 using System.Threading;
 using System.Globalization;
-using System.Resources;
 
 public partial class login : System.Web.UI.Page
@@ -37 +30 @@
 
         FakturaImageButton.ImageUrl = Resources.Common.Faktura;
-        if (!IsPostBack) { SetFocus(NIPTextBox); }        
+        if (!IsPostBack) { SetFocus(NIPTextBox); }
     }
 
     protected void ZalogujButton_Click(object sender, EventArgs e)
     {
-        string nip = NIPTextBox.Text;
-        string nrZlec = NrZlecTextBox.Text;
+        string nip = NIPTextBox.Text.Replace(" ", string.Empty).Replace("-", string.Empty);
+        string nrZlec = NrZlecTextBox.Text.Replace(" ", string.Empty);
         bool czyZalogowany = Zaloguj(nip, nrZlec);
         if (czyZalogowany)
         {
-            FormsAuthentication.RedirectFromLoginPage(nip, false);            
+            FormsAuthentication.RedirectFromLoginPage(nip, false);
         }
         else
@@ -57 +50 @@
     bool Zaloguj(string nip, string nrFaktury)
     {
+        string fakturaNr = nrFaktury.Split('/')[0];
+        string fakturaRoz = nrFaktury.Split('/')[1];
+        string fakturaRok = nrFaktury.Split('/')[2];
+
         string connString = ConfigurationManager.ConnectionStrings["BazaReklamConn"].ConnectionString;
-        string cmdText = "SELECT COUNT(*) FROM dbo.vDanePlatnosciEcard WHERE nip=@nip AND [Faktura Numer]=@nrFaktury";
-        nip = nip.Replace(" ", "");
-        nip = nip.Replace("-", "");
-        int znalezione = 0;
-        using(SqlConnection conn = new SqlConnection(connString))
+        const string cmdText = "SELECT ID_Faktury FROM dbo.vDanePlatnosciEcard WHERE nip=@nip AND [Numer]=@numer AND [Numer_Roz]=@numerRoz AND [Numer_Rok]=@numerRok";
+        bool znalezione = false;
+        using (SqlConnection conn = new SqlConnection(connString))
         {
             SqlCommand cmd = new SqlCommand(cmdText, conn);
             cmd.Parameters.Add("@nip", SqlDbType.NVarChar, 50).Value = nip;
-            cmd.Parameters.Add("@nrFaktury", SqlDbType.NVarChar, 20).Value = nrFaktury;
+            cmd.Parameters.Add("@numer", SqlDbType.NVarChar, 10).Value = fakturaNr;
+            cmd.Parameters.Add("@numerRoz", SqlDbType.NVarChar, 10).Value = fakturaRoz;
+            cmd.Parameters.Add("@numerRok", SqlDbType.NVarChar, 10).Value = fakturaRok;
             conn.Open();
-            znalezione = (int)cmd.ExecuteScalar();
-            if (znalezione > 0)
+
+            SqlDataReader reader = cmd.ExecuteReader();
+            if (reader == null)
             {
-                Session["nip"] = nip;
-                Session["nrFaktury"] = nrFaktury;
+                conn.Close();
+                return false;
             }
+
+            if (reader.Read())
+            {
+                Session["Nip"] = nip;
+                Session["NrFaktury"] = nrFaktury;
+                Session["IdFaktury"] = reader.GetInt32(0);
+                znalezione = true;
+            }
+            reader.Close();
+            reader.Dispose();
             conn.Close();
         }
-        return (znalezione > 0);
+        return znalezione;
     }
-    
 }