c#sqlauthenticationsystem
C# - User Login only checking the newest record for the username
I am making a login system using C#, which successfully checks if the user's credentials match up, but for some reason, whenever I write a username that is not the newest record, it gives me the "Username doesn't exist" error, but if it is written with the correct password, it still logs in.
using (SqlConnection conn = new SqlConnection())
{
conn.ConnectionString = "Data source=(local);Initial Catalog=GameStore;Integrated Security=True";
conn.Open();
SqlCommand command = new SqlCommand("SELECT * FROM Staff", conn);
//Username
String TextBoxUsername = textBox1.Text;
//Lower Casing
TextBoxUsername = TextBoxUsername.ToLower();
//Password
String TextBoxPassword = textBox2.Text;
using (SqlDataReader reader = command.ExecuteReader())
{
while (reader.Read())
{
//Username
string DatabaseUsername = (string)reader["StaffUserName"];
//Lower Casing
DatabaseUsername = DatabaseUsername.ToLower();
//Password
string DatabasePassword = (string)reader["StaffPassword"];
//If Username Matches One In DB
if (DatabaseUsername == TextBoxUsername)
{
WarningLabel.Visible = false;
WarningLabel.Text = "";
//If Password Matches One In DB
if(DatabasePassword == TextBoxPassword)
{
WarningLabel.Visible = false;
WarningLabel.Text = "";
MessageBox.Show("Logging In");
}
//Wrong Password
else
{
WarningLabel.Visible = true;
WarningLabel.Text = "Incorrect Password";
}
}
//Username doesn't exist in DB
else
{
WarningLabel.Visible = true;
WarningLabel.Text = "Username doesn't exist";
}
}
}
}
}
Solution
Yeah that's cause you are doing a select * ... and storing the data in same string variable which overwrites all the data and obviously remains with the last record and thus the behavior
while (reader.Read())
{
//Username
string DatabaseUsername = (string)reader["StaffUserName"];
Better would be filter the record based on your input like below and then your posted code should work fine
select * from stuff
where StaffUserName = @uname
and StaffPassword = @pwd;
- Why does 1.0/100.0 == 0.1/10.0 give True?
- How to organize the receive msg and user current input in C network such that it's clean
- Using inclusive scan syntax in OpenMP in the C language
- Unable to understand context in book "OOP in C" by Axel Schreiner
- How to dereference member from struct in which the definition is hid from user?
- variable-length array in struct with TI compiler in C (socket programming)
- A faster way to test 32bpp DDBs for a valid Alpha channel
- How can I compile the zephyr example-application as a freestanding application?
- Why does my forked process sometimes overwrite data in a file?
- Why in C can I initialize more values than the size of an array?
- _Generic in C needs typecasting?
- Declaring/defining an unused variable changes the output from an unrelated variable
- How to use gdb to explore the stack/heap?
- How can I read an input string of unknown length?
- Confused by difference between expression inside if and expression outside if
- Fast Arc Cos algorithm?
- Discrepancy of `unsigned long` size between llvm and gcc in riscv32
- GCC (C) - error: 'x' redeclared as different kind of symbol
- Why does GCC’s static analyser falsely warn that a pointer to an allocated memory block itself stored in an allocated memory block may leak?
- c language gcc compiler *.i file #3 "" 2 what is this?
- How to make clang compile to llvm IR
- Hashtable implementation in C
- EFI variables or config file on the EFI partition for EFI application?
- Pack high bit of every byte in ARM, for 64 bytes like AVX512 vpmovb2m?
- Calling an external C function (in a shared lib) from Perl with Inline::C does not work
- Can a C program detect if its own source code has been modified?
- Is this declaration UB?
- Eclipse C/C++ how to find variable belongs to which struct quickly
- Is this truly best way to delete last element in C?
- flint/arb.h: No such file or directory