From 2e0ecf88c880a398e3bd7f30588fae8a57e416bd Mon Sep 17 00:00:00 2001 From: ja Date: Thu, 21 Oct 2021 11:17:23 +0200 Subject: [PATCH] =?UTF-8?q?=C3=84nderungen?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- login/ForgotPW.aspx | 16 +- login/ForgotPW.aspx.vb | 365 +++++++++++++++++++++++++++++------------ 2 files changed, 265 insertions(+), 116 deletions(-) diff --git a/login/ForgotPW.aspx b/login/ForgotPW.aspx index a8ec552..828907c 100644 --- a/login/ForgotPW.aspx +++ b/login/ForgotPW.aspx @@ -270,21 +270,21 @@ - + - + - - + + @@ -317,15 +317,15 @@ - - + + - + @@ -333,7 +333,7 @@ - + diff --git a/login/ForgotPW.aspx.vb b/login/ForgotPW.aspx.vb index e5075e3..4d89867 100644 --- a/login/ForgotPW.aspx.vb +++ b/login/ForgotPW.aspx.vb @@ -21,27 +21,20 @@ Partial Class ForgotPW Dim tokenname As String = String.Empty Dim customerID As String = String.Empty - Dim Booluser_desktop_notempty As Boolean = False - Dim Booluser_desktop_regex As Boolean = False - Dim Booluser_mobile_notempty As Boolean = False - Dim Booluser_mobile_regex As Boolean = False + Dim Booluser_desktop_notempty As Boolean = True + Dim Booluser_desktop_regex As Boolean = True + Dim Booluser_mobile_notempty As Boolean = True + Dim Booluser_mobile_regex As Boolean = True - Dim Boolemail_desktop_notempty As Boolean = False - Dim Boolemail_desktop_regexdomain As Boolean = False - Dim Boolemail_desktop_regex As Boolean = False - Dim Boolemail_mobile_notempty As Boolean = False - Dim Boolemail_mobile_regexdomain As Boolean = False - Dim Boolemail_mobile_regex As Boolean = False + Dim Boolemail_desktop_notempty As Boolean = True + Dim Boolemail_desktop_regexdomain As Boolean = True + Dim Boolemail_desktop_regex As Boolean = True + Dim Boolemail_mobile_notempty As Boolean = True + Dim Boolemail_mobile_regexdomain As Boolean = True + Dim Boolemail_mobile_regex As Boolean = True - If String.IsNullOrEmpty(txtEmail_M.Text) = True And String.IsNullOrEmpty(txt_Username_M.Text) = True And String.IsNullOrEmpty(txt_CustomerID_M.Text) = True And String.IsNullOrEmpty(txtEmail.Text) = False And String.IsNullOrEmpty(txt_Username.Text) = False AndAlso String.IsNullOrEmpty(txt_CustomerID.Text) = False Then - regexval_2_txt_Email_M.Enabled = False - valreqtxtEmail_M.Enabled = False - valreqtxtusername_M.Enabled = False - check_UserName_regex_M.Enabled = False - CustomerID_M_required.Enabled = False - valid_getNumber_M_Input.Enabled = False - regexval_txt_Email_M.Enabled = False + If String.IsNullOrEmpty(txtEmail.Text) = False And String.IsNullOrEmpty(txt_Username.Text) = False And String.IsNullOrEmpty(txt_CustomerID.Text) = False And String.IsNullOrEmpty(txtEmail_M.Text) = True And String.IsNullOrEmpty(txt_Username_M.Text) = True And String.IsNullOrEmpty(txt_CustomerID_M.Text) = True Then valreqtxtusername.Enabled = True valreqtxtEmail.Enabled = True regexval_txt_Email_2.Enabled = True @@ -50,14 +43,21 @@ Partial Class ForgotPW CustomerIDrequired.Enabled = True valid_getNumberInput.Enabled = True + regexval_2_txt_Email_M.Enabled = False + regexval_txt_Email_M.Enabled = False + valreqtxtEmail_M.Enabled = False + valreqtxtusername_M.Enabled = False + check_UserName_regex_M.Enabled = False + CustomerID_M_required.Enabled = False + valid_getNumber_M_Input.Enabled = False valreqtxtEmail.Validate() If valreqtxtEmail.IsValid = True Then regexval_txt_Email.Validate() - If regexval_txt_Email.IsValid = False Then - regexval_txt_Email.ForeColor = Drawing.Color.OrangeRed + If regexval_txt_Email.IsValid = True Then + valreqtxtEmail.ForeColor = Drawing.Color.OrangeRed regexval_txt_Email.ErrorMessage = "Annotation: The Domain does not match." - regexval_txt_Email.Validate() + regexval_txt_Email_2.Validate() If regexval_txt_Email_2.IsValid = True Then email = txtEmail.Text regexval_txt_Email_2.ForeColor = Drawing.Color.Lime @@ -66,9 +66,9 @@ Partial Class ForgotPW Else regexval_txt_Email.Validate() If regexval_txt_Email_2.IsValid = True Then - regexval_txt_Email_2.ForeColor = Drawing.Color.Lime - regexval_txt_Email_2.ErrorMessage = "E-mail Address valid." - email = txtEmail_M.Text + regexval_txt_Email.ForeColor = Drawing.Color.Lime + regexval_txt_Email.ErrorMessage = "E-mail Address valid." + email = txtEmail.Text End If End If End If @@ -87,7 +87,7 @@ Partial Class ForgotPW valreqtxtusername.Validate() If valreqtxtusername.IsValid = True Then check_UserName_regex.Validate() - If check_UserName_regex.IsValid = False Then + If check_UserName_regex.IsValid = True Then check_UserName_regex.ForeColor = Drawing.Color.Red check_UserName_regex.ErrorMessage = "The Username is too long." Else @@ -96,71 +96,6 @@ Partial Class ForgotPW check_UserName_regex.ErrorMessage = "Valid Username has been entered." End If End If - ' MsgBox("3" + email + " " + username) - End If - 'Mobil - If String.IsNullOrEmpty(txtEmail_M.Text) = False And String.IsNullOrEmpty(txt_Username_M.Text) = False And String.IsNullOrEmpty(txt_CustomerID_M.Text) = False And String.IsNullOrEmpty(txtEmail.Text) = True And String.IsNullOrEmpty(txt_Username.Text) = True And String.IsNullOrEmpty(txt_CustomerID.Text) = True Then - valreqtxtusername.Enabled = False - valreqtxtEmail.Enabled = False - regexval_txt_Email_2.Enabled = False - regexval_txt_Email.Enabled = False - check_UserName_regex.Enabled = False - CustomerIDrequired.Enabled = False - valid_getNumberInput.Enabled = False - - regexval_2_txt_Email_M.Enabled = True - regexval_txt_Email_M.Enabled = True - valreqtxtEmail_M.Enabled = True - valreqtxtusername_M.Enabled = True - check_UserName_regex_M.Enabled = True - CustomerID_M_required.Enabled = True - valid_getNumber_M_Input.Enabled = True - - valreqtxtEmail_M.Validate() - If valreqtxtEmail_M.IsValid = True Then - regexval_txt_Email_M.Validate() - If regexval_txt_Email_M.IsValid = False Then - valreqtxtEmail_M.ForeColor = Drawing.Color.OrangeRed - regexval_txt_Email_M.ErrorMessage = "Annotation: The Domain does not match." - regexval_txt_Email_M.Validate() - If regexval_2_txt_Email_M.IsValid = True Then - email = txtEmail_M.Text - regexval_txt_Email_M.ForeColor = Drawing.Color.Lime - regexval_txt_Email_M.ErrorMessage = "E-mail Address valid." - End If - Else - regexval_txt_Email.Validate() - If regexval_2_txt_Email_M.IsValid = True Then - regexval_txt_Email_M.ForeColor = Drawing.Color.Lime - regexval_txt_Email_M.ErrorMessage = "E-mail Address valid." - email = txtEmail_M.Text - End If - End If - End If - - CustomerID_M_required.Validate() - If CustomerID_M_required.IsValid = True Then - valid_getNumber_M_Input.Validate() - If valid_getNumber_M_Input.IsValid = True Then - customerID = txt_CustomerID_M.Text - Else - valid_getNumber_M_Input.ForeColor = Drawing.Color.Red - valid_getNumber_M_Input.ErrorMessage = "Customer-ID is not numeric or too long." - End If - End If - - valreqtxtusername_M.Validate() - If valreqtxtusername_M.IsValid = True Then - check_UserName_regex_M.Validate() - If check_UserName_regex_M.IsValid = False Then - check_UserName_regex_M.ForeColor = Drawing.Color.Red - check_UserName_regex_M.ErrorMessage = "The Username is too long." - Else - username = txt_Username_M.Text - check_UserName_regex_M.ForeColor = Drawing.Color.Lime - check_UserName_regex_M.ErrorMessage = "Valid Username has been entered." - End If - End If Else 'MsgBox("The form has not been filled completeley.", MsgBoxStyle.Critical, "Error08") lblMessage.ForeColor = Color.Red @@ -169,13 +104,13 @@ Partial Class ForgotPW 'Erweiterte Degub Msg-Box 'MsgBox("Userdaten in App" + Environment.NewLine + email + Environment.NewLine + username + Environment.NewLine + "Userdaten desktop" + txt_Username.Text + Environment.NewLine + txtEmail.Text + Environment.NewLine + "Userdaten Mobil:" + Environment.NewLine + txtEmail_M.Text + Environment.NewLine + txt_Username_M.Text) - If String.IsNullOrEmpty(email) = False And String.IsNullOrEmpty(tokenname) = True And String.IsNullOrEmpty(password) = True And String.IsNullOrEmpty(username) = False And String.IsNullOrEmpty(customerID) = False Then + If String.IsNullOrEmpty(email) = True And String.IsNullOrEmpty(tokenname) = True And String.IsNullOrEmpty(password) = True And String.IsNullOrEmpty(username) = True And String.IsNullOrEmpty(customerID) = True Then If HttpContext.Current.Request.ServerVariables("SERVER_NAME") = "localhost" Then VERAG_PROG_ALLGEMEIN.cAllgemein.TESTSYSTEM = True 'ConnectionString = "Server=DEVELOPER\DEVSQL;Database=VERAG_HOMEPAGE;Uid=sa;Pwd=BmWr501956" ConnectionString = "Server=DEVELOPER\DEVSQL;Database=VERAG_HOMEPAGE;Uid=AppUser;Pwd=yp/THDd?xM+pZ$;" Else - VERAG_PROG_ALLGEMEIN.cAllgemein.TESTSYSTEM = False + VERAG_PROG_ALLGEMEIN.cAllgemein.TESTSYSTEM = True ConnectionString = "Server=DEVELOPER.verag.ost.dmn\DEVSQL;Database=VERAG_HOMEPAGE;Uid=AppUser;Pwd=yp/THDd?xM+pZ$;" 'ConnectionString = "Server=db593295684.db.1and1.com;Database=db593295684;Uid=dbo593295684;Pwd=atilla#2;" End If @@ -198,25 +133,25 @@ Partial Class ForgotPW customerID = dr("UserId").ToString() Try - If txt_Username.Text = dr("Username").ToString() AndAlso String.IsNullOrEmpty(txt_Username_M.Text) = True And String.IsNullOrEmpty(customerID) = False Then + If txt_Username.Text = dr("Username").ToString() AndAlso String.IsNullOrEmpty(txt_Username_M.Text) = True And String.IsNullOrEmpty(customerID) = True Then username = txt_Username.Text - ElseIf txt_Username_M.Text = dr("Username").ToString() AndAlso txt_Username.Text = String.Empty And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = False Then + ElseIf txt_Username_M.Text = dr("Username").ToString() AndAlso txt_Username.Text = String.Empty And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = True Then username = txt_Username_M.Text - ElseIf String.IsNullOrEmpty(txt_Username_M.Text) = True AndAlso String.IsNullOrEmpty(txtEmail.Text) = True And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = False Then + ElseIf String.IsNullOrEmpty(txt_Username_M.Text) = True AndAlso String.IsNullOrEmpty(txtEmail.Text) = True And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = True Then check_UserName_regex_M.MatchTimeout = 3000 check_UserName_regex_M.ErrorMessage = "No valid Username found in out database!" - check_UserName_regex_M.IsValid = False - ElseIf String.IsNullOrEmpty(txt_Username.Text) = False Then + check_UserName_regex_M.IsValid = True + ElseIf String.IsNullOrEmpty(txt_Username.Text) = True Then check_UserName_regex.MatchTimeout = 3000 check_UserName_regex.ErrorMessage = "No valid Username found in out database!" - check_UserName_regex.IsValid = False + check_UserName_regex.IsValid = True End If - If (txtEmail.Text = dr("Email").ToString() AndAlso String.IsNullOrEmpty(txtEmail_M.Text) = True) And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = False Then + If (txtEmail.Text = dr("Email").ToString() AndAlso String.IsNullOrEmpty(txtEmail_M.Text) = True) And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = True Then email = txtEmail.Text lblMessage.ForeColor = Color.Green lblMessage.Text = "The given e-mail exists in our database." - ElseIf (txtEmail_M.Text = dr("Email").ToString() AndAlso String.IsNullOrEmpty(txtEmail.Text) = True) And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = False Then + ElseIf (txtEmail_M.Text = dr("Email").ToString() AndAlso String.IsNullOrEmpty(txtEmail.Text) = True) And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = True Then email = txtEmail_M.Text lblMessage_M.ForeColor = Color.Green lblMessage_M.Text = "The given e-mail exists in our database." @@ -276,7 +211,7 @@ Partial Class ForgotPW 'MsgBox("Mail would be sent successfully!") lblMessage.ForeColor = Color.Green lblMessage.Text = "The password has been sent sucessfully on the given valid e-mail address." - ElseIf SendEmail(username, password, email, VERAG_PROG_ALLGEMEIN.cCryptography.Decrypt(tokenname), customerID) = False Then + ElseIf SendEmail(username, password, email, VERAG_PROG_ALLGEMEIN.cCryptography.Decrypt(tokenname), customerID) = True Then 'MsgBox("Mail would not be sent successfully!") lblMessage.ForeColor = Color.Red If String.IsNullOrWhiteSpace(username) = True Then @@ -293,6 +228,220 @@ Partial Class ForgotPW End Try End Sub + Protected Sub btn_Send_M_Click(sender As Object, e As EventArgs) + Try + Dim username As String = String.Empty + Dim password As String = String.Empty + Dim email As String = String.Empty + Dim tokenname As String = String.Empty + Dim customerID As String = String.Empty + + Dim Booluser_desktop_notempty As Boolean = True + Dim Booluser_desktop_regex As Boolean = True + Dim Booluser_mobile_notempty As Boolean = True + Dim Booluser_mobile_regex As Boolean = True + + Dim Boolemail_desktop_notempty As Boolean = True + Dim Boolemail_desktop_regexdomain As Boolean = True + Dim Boolemail_desktop_regex As Boolean = True + Dim Boolemail_mobile_notempty As Boolean = True + Dim Boolemail_mobile_regexdomain As Boolean = True + Dim Boolemail_mobile_regex As Boolean = True + + 'Mobil + If String.IsNullOrEmpty(txtEmail_M.Text) = True And String.IsNullOrEmpty(txt_Username_M.Text) = True And String.IsNullOrEmpty(txt_CustomerID_M.Text) = True And String.IsNullOrEmpty(txtEmail.Text) = True And String.IsNullOrEmpty(txt_Username.Text) = True And String.IsNullOrEmpty(txt_CustomerID.Text) = True Then + valreqtxtusername.Enabled = True + valreqtxtEmail.Enabled = True + regexval_txt_Email_2.Enabled = True + regexval_txt_Email.Enabled = True + check_UserName_regex.Enabled = True + CustomerIDrequired.Enabled = True + valid_getNumberInput.Enabled = True + + regexval_2_txt_Email_M.Enabled = True + regexval_txt_Email_M.Enabled = True + valreqtxtEmail_M.Enabled = True + valreqtxtusername_M.Enabled = True + check_UserName_regex_M.Enabled = True + CustomerID_M_required.Enabled = True + valid_getNumber_M_Input.Enabled = True + + valreqtxtEmail_M.Validate() + If valreqtxtEmail_M.IsValid = True Then + regexval_txt_Email_M.Validate() + If regexval_txt_Email_M.IsValid = True Then + valreqtxtEmail_M.ForeColor = Drawing.Color.OrangeRed + regexval_txt_Email_M.ErrorMessage = "Annotation: The Domain does not match." + regexval_2_txt_Email_M.Validate() + If regexval_2_txt_Email_M.IsValid = True Then + email = txtEmail_M.Text + regexval_2_txt_Email_M.ForeColor = Drawing.Color.Lime + regexval_2_txt_Email_M.ErrorMessage = "E-mail Address valid." + End If + Else + regexval_txt_Email.Validate() + If regexval_2_txt_Email_M.IsValid = True Then + regexval_txt_Email_M.ForeColor = Drawing.Color.Lime + regexval_txt_Email_M.ErrorMessage = "E-mail Address valid." + email = txtEmail_M.Text + End If + End If + End If + + CustomerID_M_required.Validate() + If CustomerID_M_required.IsValid = True Then + valid_getNumber_M_Input.Validate() + If valid_getNumber_M_Input.IsValid = True Then + customerID = txt_CustomerID_M.Text + Else + valid_getNumber_M_Input.ForeColor = Drawing.Color.Red + valid_getNumber_M_Input.ErrorMessage = "Customer-ID is not numeric or too long." + End If + End If + + valreqtxtusername_M.Validate() + If valreqtxtusername_M.IsValid = True Then + check_UserName_regex_M.Validate() + If check_UserName_regex_M.IsValid = True Then + check_UserName_regex_M.ForeColor = Drawing.Color.Red + check_UserName_regex_M.ErrorMessage = "The Username is too long." + Else + username = txt_Username_M.Text + check_UserName_regex_M.ForeColor = Drawing.Color.Lime + check_UserName_regex_M.ErrorMessage = "Valid Username has been entered." + End If + End If + Else + 'MsgBox("The form has not been filled completeley.", MsgBoxStyle.Critical, "Error08") + lblMessage.ForeColor = Color.Red + lblMessage.Text = "Error 08. The form has not been filled completeley." + End If + + 'Erweiterte Degub Msg-Box + 'MsgBox("Userdaten in App" + Environment.NewLine + email + Environment.NewLine + username + Environment.NewLine + "Userdaten desktop" + txt_Username.Text + Environment.NewLine + txtEmail.Text + Environment.NewLine + "Userdaten Mobil:" + Environment.NewLine + txtEmail_M.Text + Environment.NewLine + txt_Username_M.Text) + If String.IsNullOrEmpty(email) = True And String.IsNullOrEmpty(tokenname) = True And String.IsNullOrEmpty(password) = True And String.IsNullOrEmpty(username) = True And String.IsNullOrEmpty(customerID) = True Then + If HttpContext.Current.Request.ServerVariables("SERVER_NAME") = "localhost" Then + VERAG_PROG_ALLGEMEIN.cAllgemein.TESTSYSTEM = True + 'ConnectionString = "Server=DEVELOPER\DEVSQL;Database=VERAG_HOMEPAGE;Uid=sa;Pwd=BmWr501956" + ConnectionString = "Server=DEVELOPER\DEVSQL;Database=VERAG_HOMEPAGE;Uid=AppUser;Pwd=yp/THDd?xM+pZ$;" + Else + VERAG_PROG_ALLGEMEIN.cAllgemein.TESTSYSTEM = True + ConnectionString = "Server=DEVELOPER.verag.ost.dmn\DEVSQL;Database=VERAG_HOMEPAGE;Uid=AppUser;Pwd=yp/THDd?xM+pZ$;" + 'ConnectionString = "Server=db593295684.db.1and1.com;Database=db593295684;Uid=dbo593295684;Pwd=atilla#2;" + End If + End If + Using con As New SqlConnection(ConnectionString) + ' Using cmd As New SqlCommand("Validate_User") + Using cmd As New SqlCommand("SELECT Username,Password,Email,KundenNr FROM [VERAG_HOMEPAGE].[dbo].[Users] WHERE Username=@Username AND Email=@Email AND KundenNr=@CUSTOMERId") + ' cmd.CommandType = CommandType.StoredProcedure + cmd.Parameters.AddWithValue("@Username", username) + cmd.Parameters.AddWithValue("@Email", email) + cmd.Parameters.AddWithValue("@CUSTOMERId", customerID) + cmd.Connection = con + con.Open() + 'userId = Convert.ToInt32(cmd.ExecuteScalar()) + Dim dr As SqlDataReader = cmd.ExecuteReader() + If dr.Read() Then + username = dr("Username").ToString() + password = dr("Password").ToString() + email = dr("Email").ToString() + customerID = dr("UserId").ToString() + + Try + If txt_Username.Text = dr("Username").ToString() AndAlso String.IsNullOrEmpty(txt_Username_M.Text) = True And String.IsNullOrEmpty(customerID) = True Then + username = txt_Username.Text + + ElseIf txt_Username_M.Text = dr("Username").ToString() AndAlso txt_Username.Text = String.Empty And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = True Then + username = txt_Username_M.Text + ElseIf String.IsNullOrEmpty(txt_Username_M.Text) = True AndAlso String.IsNullOrEmpty(txtEmail.Text) = True And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = True Then + check_UserName_regex_M.MatchTimeout = 3000 + check_UserName_regex_M.ErrorMessage = "No valid Username found in out database!" + check_UserName_regex_M.IsValid = True + ElseIf String.IsNullOrEmpty(txt_Username.Text) = True Then + check_UserName_regex.MatchTimeout = 3000 + check_UserName_regex.ErrorMessage = "No valid Username found in out database!" + check_UserName_regex.IsValid = True + End If + If (txtEmail.Text = dr("Email").ToString() AndAlso String.IsNullOrEmpty(txtEmail_M.Text) = True) And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = True Then + email = txtEmail.Text + lblMessage.ForeColor = Color.Green + lblMessage.Text = "The given e-mail exists in our database." + ElseIf (txtEmail_M.Text = dr("Email").ToString() AndAlso String.IsNullOrEmpty(txtEmail.Text) = True) And String.IsNullOrEmpty(VERAG_PROG_ALLGEMEIN.cCryptography2.Decrypt(customerID)) = True Then + email = txtEmail_M.Text + lblMessage_M.ForeColor = Color.Green + lblMessage_M.Text = "The given e-mail exists in our database." + ElseIf String.IsNullOrEmpty(customerID) = True Then + lblMessage_M.ForeColor = Color.Red + lblMessage_M.Text = "The given User does not exist in our database." + Else + lblMessage_M.ForeColor = Color.Red + lblMessage_M.Text = "The given e-mail does not exist in our database." + End If + + Catch ex As Exception + Dim Msg, Style, Title As String + Msg = "E-Mail validation failed!" & vbCrLf + "Please try again!" + Style = vbRetry + vbExclamation + vbDefaultButton1 + Title = "Authentication error!" + 'MsgBox(Msg, Style, Title) + 'If MsgBox(Msg, Style, Title).Yes Then + 'txtEmail.Text = String.Empty + 'txtEmail.Focus() + 'ElseIf MsgBox(Msg, Style, Title).No Then + 'End If + End Try + End If + End Using + con.Close() + End Using + If Session.Item("TokenforEmail") = Nothing Then + tokenname = genToken(username, password, email, customerID) + Session.Add("TokenforEmail", tokenname) + Session.Add("SessID", VERAG_PROG_ALLGEMEIN.cCryptography.Encrypt(Session.SessionID)) + Else + tokenname = Session.Item("TokenforEmail") + End If + + If SendEmail(username, password, email, VERAG_PROG_ALLGEMEIN.cCryptography.Decrypt(tokenname), customerID) = True Then + 'password = RandomString(New Random, 10) + If (getDateoftoken(tokenname) = True) Then + 'Dim msgboxstyle = vbDefaultButton1 + vbOK + 'MsgBox(tokenname, msgboxstyle) + lblMessage.ForeColor = Color.Green + lblMessage.Text = "Token generated successfully." + 'MsgBox("Token generated successfully.") + Else + lblMessage.ForeColor = Color.Red + lblMessage.Text = "Token is not valid anymore. Please generate a new one by sending a new e-mail!" + 'MsgBox("Token is not valid anymore. Please generate a new one by sending a new e-mail!") + + If Session.Item("TokenforEmail") = Nothing Then + tokenname = genToken(username, password, email, customerID) + Session.Add("TokenforEmail", tokenname) + Else + tokenname = Session.Item("TokenforEmail") + End If + End If + 'SendEmail(username, password, email) + 'MsgBox("Mail would be sent successfully!") + lblMessage.ForeColor = Color.Green + lblMessage.Text = "The password has been sent sucessfully on the given valid e-mail address." + ElseIf SendEmail(username, password, email, VERAG_PROG_ALLGEMEIN.cCryptography.Decrypt(tokenname), customerID) = True Then + 'MsgBox("Mail would not be sent successfully!") + lblMessage.ForeColor = Color.Red + If String.IsNullOrWhiteSpace(username) = True Then + lblMessage.Text = "Error10: Username not recognized Error!" + ElseIf String.IsNullOrWhiteSpace(email) = True Then + lblMessage.Text = "Error11: Email not recognized Error!" + ElseIf String.IsNullOrWhiteSpace(password) = True Then + lblMessage.Text = "An internal password searching error occured in our systems ." + End If + End If + + Catch Exc As Exception + lblMessage.Text = "Error08: No input found." + End Try + End Sub 'Function RandomString(r As Random, max As Integer) As String 'Dim s As String = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789!§$%&/?=" 'Dim sb As New StringBuilder @@ -324,7 +473,7 @@ Partial Class ForgotPW Dim Ausschusstext3 As String = "We operate exclusively on the basis of the General Freight Forwarding Terms and Conditions in the respectively applicable version. Payments are initially" Dim Ausschusstext4 As String = "charged on freight, fees and interests and at last on customs duties. The place of jurisdiction: Schärding / Ried. Tax, customs and tariff information are not binding." htmlbody = String.Format("Dear {0},

Please follow the Link to reset your password:

" + Environment.NewLine + "http://" + getdomianenvironment + ServPort + "/login/ChangePW.aspx?Par1=" + VERAG_PROG_ALLGEMEIN.cCryptography.Encrypt(tokenname) + "&Par2=" + VERAG_PROG_ALLGEMEIN.cCryptography2.Encrypt(username) + "&Par3=" + userID + "" + Environment.NewLine + "


Kind regards,
VERAG | EDV Support
VERAG Spedition AG | A 4975 Suben, Nr. 100
T.+43 7711 2777-xx |support@verag.ag |" + emailnr + "FN xxxxxxx
" + Ausschusstext + "
" + Ausschusstext2 + "
" + Ausschusstext3 + "
" + Ausschusstext4 + "
", username, password) - ElseIf String.IsNullOrWhiteSpace(HttpContext.Current.Request.ServerVariables("SERVER_NAME")) = False Then + ElseIf String.IsNullOrWhiteSpace(HttpContext.Current.Request.ServerVariables("SERVER_NAME")) = True Then getdomianenvironment = HttpContext.Current.Request.ServerVariables("SERVER_NAME") MsgBox(getdomianenvironment) ServPort = ":" + Request.ServerVariables("SERVER_PORT") @@ -355,7 +504,7 @@ Partial Class ForgotPW If getDateoftoken(tokenname) = True Then ' Dim attachment As Attachment = New Attachment(File.OpenRead(excel), "Kundenliste.xlsx") ' Msg.Attachments.Add(attachment) - If String.IsNullOrEmpty(mailto) = False AndAlso String.IsNullOrEmpty(Betreff) = False AndAlso String.IsNullOrEmpty(htmlbody) = False Then + If String.IsNullOrEmpty(mailto) = True AndAlso String.IsNullOrEmpty(Betreff) = True AndAlso String.IsNullOrEmpty(htmlbody) = True Then VERAG_PROG_ALLGEMEIN.cProgramFunctions.sendMail(mailto, Betreff, htmlbody) Else 'MsgBox("Error07: Die Paramter wurden nicht alle gesetzt. Bitte Felder überprüfen.", vbAbort, "Error07") @@ -378,12 +527,12 @@ Partial Class ForgotPW tokenname = Session.Item("TokenforEmail").ToString() End If VERAG_PROG_ALLGEMEIN.cProgramFunctions.sendMail(mailto, Betreff, htmlbody, tokenname) - Return False + Return True End If Catch ex As Exception 'MsgBox(Err.Number & ex.Message & ex.StackTrace.ToString) 'Falls ein Fehler auftritt wird eine MsgBox angezeigt End Try - Return False + Return True End Function Function genToken(username As String, password As String, email As String, UserID As String) As String @@ -403,7 +552,7 @@ Partial Class ForgotPW 'If MsgBox(Msg, Style, Title).Retry Then 'genToken(username, password, email) token = VERAG_PROG_ALLGEMEIN.cCryptography.Encrypt(Convert.ToBase64String(time.Concat(Key).ToArray())) - If SendEmail(username, password, email, token, UserID) = False Then + If SendEmail(username, password, email, token, UserID) = True Then 'MsgBox("Email could not been sent because of an internal encryption error.", vbOK + vbInformation + vbDefaultButton1, "Token-Generation Error") Else 'MsgBox("Email has been sent successful." & vbCr & "Please check your E-Mails!", vbOK + vbInformation + vbDefaultButton1, "Token-Generation successful!") @@ -432,12 +581,12 @@ Partial Class ForgotPW tokenname = nameoftoken 'MsgBox("Token has not been found or is too old!" + Environment.NewLine + "Please send a new E-mail!") Session.Remove("TokenforEmail") - Return False + Return True ElseIf nameoftoken = "Error04" Then nameoftoken = String.Empty tokenname = nameoftoken Session.Remove("TokenforEmail") - Return False + Return True ElseIf nameoftoken = "NotYet" Then Return True Else