IME-LONDON
/
MOBILE_API
8
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
47 Commits
3 Branches
0 Tags
4.7 MiB
Tree: 634dae3438
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '634dae3438'
${ noResults }
MOBILE_API/DB/SPs/proc_online_customer_login.sql

466 lines
32 KiB
Raw Normal View History

First commit
1 year ago
  1. USE [FastMoneyPro_Remit]
  2. GO
  3. /****** Object: StoredProcedure [dbo].[proc_online_customer_login] Script Date: 9/27/2019 1:30:14 PM ******/
  4. SET ANSI_NULLS ON
  5. GO
  6. SET QUOTED_IDENTIFIER ON
  7. GO
  9. ALTER PROC [dbo].[proc_online_customer_login]
  10. @flag VARCHAR(50)
  11. ,@customerEmail VARCHAR(100) = NULL
  12. ,@customerPassword VARCHAR(255) = NULL
  13. ,@country VARCHAR(50) = NULL
  14. ,@ipAddress VARCHAR(100) = NULL
  15. ,@lockReason VARCHAR(500) = NULL
  16. ,@UserInfoDetail VARCHAR(MAX) = NULL
  17. ,@sessionId VARCHAR(60) = NULL
  18. ,@checkCountry VARCHAR(50) = NULL
  19. ,@password VARCHAR(50) = NULL
  20. ,@idType VARCHAR(50) = NULL
  21. ,@idNumber VARCHAR(50) = NULL
  22. AS
  23. SET NOCOUNT ON;
  24. SET XACT_ABORT ON;
  26. BEGIN TRY
  27. DECLARE
  28. @UserData VARCHAR(200)
  29. ,@lastPwdChangedOn DATETIME
  30. ,@forceChangePwd CHAR(1)
  31. ,@pwdChangeDays VARCHAR(20)
  32. ,@msg VARCHAR(2000)
  33. ,@pwdChangeWarningDays VARCHAR(5)
  34. ,@lastLoginDate DATETIME
  36. DECLARE @email VARCHAR(100)
  37. ,@customerPwd VARCHAR(50)
  38. ,@isActive CHAR(1)
  39. ,@onlineUser CHAR(1)
  40. ,@isLocked VARCHAR(1)
  41. ,@ccountry VARCHAR(50)
  42. ,@customerStatus CHAR(1)
  43. ,@loginAttempt INT
  45. IF @flag = 'check-id'
  46. BEGIN
  47. IF EXISTS(SELECT FULLNAME FROM CUSTOMERMASTER (NOLOCK) WHERE IDNUMBER = @idNumber) OR
  48. EXISTS(SELECT 'x' FROM dbo.CustomerMasterTemp AS CM(NOLOCK) WHERE IDNUMBER = @idNumber AND createdBy IS NOT NULL)
  49. BEGIN
  50. SELECT 1 ERRORCODE,'Already exists!' MSG,NULL
  51. RETURN
  52. END
  54. SELECT 0 ERRORCODE,'Success' MSG,NULL
  55. RETURN
  56. END
  57. IF @flag = 'checkIp'
  58. BEGIN
  59. IF NOT EXISTS( SELECT COUNTRYNAME FROM COUNTRYMASTER WITH (NOLOCK)
  60. WHERE ISNULL(allowOnlineCustomer,'N')='Y' AND upper(COUNTRYNAME)=upper(@checkCountry))
  61. BEGIN
  62. SELECT 1 ERRORCODE,'NOT AVAILABLE' MSG,NULL
  63. RETURN
  64. END
  65. ELSE
  66. BEGIN
  67. SELECT 0 ERRORCODE,'AVAILABLE' MSG,NULL
  68. END
  69. END
  71. IF @flag = 'l'
  72. BEGIN
  73. IF NOT EXISTS(SELECT 'x' FROM customerMaster WITH(NOLOCK) WHERE email=@customerEmail)
  74. BEGIN
  75. SELECT 1 errorCode, 'Login Failed - Invalid username or password!' mes, @customerEmail id
  76. RETURN
  77. END
  78. SELECT @email=email,
  79. @customerPwd=customerPassword,
  80. @isActive=isactive,
  81. @onlineUser=onlineuser,
  82. @isLocked=isLocked,
  83. @ccountry=country,
  84. @customerStatus=customerStatus,
  85. @lastLoginDate=lastLoginTs,
  86. @loginAttempt = ISNULL(invalidAttemptCount, 0)
  87. FROM customerMaster WITH (NOLOCK)
  88. WHERE email=@customerEmail and ISNULL(onlineUser, 'N')='Y'
  90. SET @UserData ='User: '+ @customerEmail +' User Type:Online User'
  91. DECLARE @attemptsCount INT, @InvalidReason VARCHAR(80), @InvalidMsg VARCHAR(100)
  92. SELECT TOP 1 @attemptsCount = loginAttemptCount FROM passwordFormat WITH(NOLOCK)
  94. IF (ISNULL(@isLocked, 'N') IN ('B', 'Y')) OR ((@loginAttempt - @attemptsCount) = -1)
  95. BEGIN
  96. SET @UserInfoDetail = 'Reason = Too many wrong attempts .-:::-' + @UserInfoDetail
  98. SELECT 1 errorCode, 'Login Failed - Too many wrong attempts, please contact GME Support!' mes, @customerEmail id, @attemptsCount ac
  99. EXEC proc_applicationLogs
  100. @flag='login',
  101. @logType='Login fails',
  102. @createdBy = @customerEmail,
  103. @Reason= 'Reason = Too many wrong attempts.',
  104. @UserData = @UserData,
  105. @fieldValue = @UserInfoDetail,
  106. @IP = @ipAddress
  107. RETURN
  108. END
  110. IF (@customerPwd <> dbo.FNAEncryptString(@customerPassword))
  111. BEGIN
  112. SET @UserInfoDetail = 'Reason = Incorrect password .-:::-' + @UserInfoDetail
  114. SET @loginAttempt = @loginAttempt + 1
  116. UPDATE customerMaster SET invalidAttemptCount = @loginAttempt--, isLocked = CASE WHEN @loginAttempt > @attemptsCount THEN 'B' ELSE 'N' END
  117. WHERE email = @customerEmail and ISNULL(onlineUser, 'N')='Y'
  119. SET @InvalidReason = CASE WHEN @loginAttempt > @attemptsCount THEN 'Number of invalid password attempts exceeded!' ELSE 'Invalid Password' END
  120. SET @InvalidMsg = 'Login Failed - you have ' + CAST((@attemptsCount - @loginAttempt) AS VARCHAR) + ' Attempts Left'
  122. SELECT 1 errorCode, @InvalidMsg mes, @customerEmail id, @attemptsCount ac
  123. EXEC proc_applicationLogs
  124. @flag='login',
  125. @logType='Login fails',
  126. @createdBy = @customerEmail,
  127. @Reason= @InvalidReason,
  128. @UserData = @UserData,
  129. @fieldValue = @UserInfoDetail,
  130. @IP = @ipAddress
  131. RETURN
  132. END
  134. IF (ISNULL(@onlineUser, 'N') = 'N')
  135. BEGIN
  136. SELECT 2 errorCode, 'User is not an Online User' mes, @customerEmail id, @attemptsCount ac
  137. SET @UserInfoDetail = 'Reason = Login fails, Invalid password.-:::-'+@UserInfoDetail
  138. EXEC proc_applicationLogs
  139. @flag='login',
  140. @logType='Login fails',
  141. @createdBy = @customerEmail,
  142. @Reason='Not online User',
  143. @UserData = @UserData,
  144. @fieldValue = @UserInfoDetail,
  145. @IP = @ipAddress
  146. RETURN
  147. END
  149. DECLARE @vPenny CHAR(1),@vCustomerId BIGINT
  151. SELECT @vCustomerId=CM.customerId , @vPenny = CASE WHEN CM.createdDate < '2018-12-19 11:00:00' THEN 'N' WHEN ISNULL(CC.action,'REQ') = 'REQ' THEN 'Y' ELSE 'N' END
  152. from customerMaster CM (nolock)
  153. LEFT JOIN TblCustomerBankVerification CC (nolock) ON CM.customerId = CC.customerId
  154. WHERE CM.email = @customerEmail
  156. IF @vPenny = 'Y'
  157. BEGIN
  158. SELECT 1000 errorCode, 'User redirect to penny test verification' mes, @vCustomerId id
  159. SET @UserInfoDetail = 'Reason = Login fails, User redirect to penny test verification.-:::-'+@UserInfoDetail
  160. EXEC proc_applicationLogs
  161. @flag='login',
  162. @logType='Login fails',
  163. @createdBy = @customerEmail,
  164. @Reason='Penny test verification',
  165. @UserData = @UserData,
  166. @fieldValue = @UserInfoDetail,
  167. @IP = @ipAddress
  168. RETURN
  169. END
  170. IF (ISNULL(@isActive, 'Y') = 'N')
  171. BEGIN
  172. SELECT 1 errorCode, 'Your account is Inactive. Please, contact GME Support Team.' mes, @customerEmail id
  173. SET @UserInfoDetail = 'Reason = Login fails, Your account is Inactive. Please, contact your administrator.-:::-'+@UserInfoDetail
  174. EXEC proc_applicationLogs
  175. @flag='login',
  176. @logType='Login fails',
  177. @createdBy = @customerEmail,
  178. @Reason='User is not active ',
  179. @UserData = @UserData,
  180. @fieldValue = @UserInfoDetail,
  181. @IP = @ipAddress
  182. RETURN
  183. END
  185. IF EXISTS (SELECT 'x' FROM customerMaster (NOLOCK) WHERE email=@customerEmail AND approvedBy IS NULL AND approvedDate IS NULL)
  186. BEGIN
  187. SELECT 1 errorCode, 'Login Failed - Customer registration verification pending please visit nearest GME branch to get verified!' mes, @customerEmail id
  188. RETURN
  189. END
  191. UPDATE customerMaster SET
  192. sessionId=@sessionId
  193. ,lastLoginTs = GETDATE()
  194. ,invalidAttemptCount = 0
  195. WHERE email = @customerEmail and ISNULL(onlineUser, 'N')='Y'
  197. DECLARE @mobileNo VARCHAR(16)
  199. SET @mobileNo = REPLACE(@mobileNo,' ','')
  200. SET @mobileNo = REPLACE(@mobileNo,'-','')
  201. SET @mobileNo = REPLACE(@mobileNo,'+','')
  202. SET @mobileNo = LEFT(@mobileNo,16)
  204. DECLARE @clientUseCode VARCHAR(10), @clientId VARCHAR(50), @clientSecret VARCHAR(50), @accessToken VARCHAR(400), @gmeBankCode VARCHAR(3), @gmeAccountNo VARCHAR(20)
  206. SELECT @clientUseCode = DBO.DECRYPTDB(clientUseCode), @clientId = DBO.DECRYPTDB(clientId), @clientSecret = DBO.DECRYPTDB(clientSecret)
  207. , @accessToken = accessToken, @gmeAccountNo = accountNum, @gmeBankCode = bankCodeStd
  208. FROM KFTC_GME_MASTER (NOLOCK)
  211. SELECT
  212. TOP 1
  213. 0 errorCode
  214. ,'Login success.' mes
  215. ,cu.customerId Id
  216. ,username = cu.email
  217. ,fullName = cu.fullName
  218. ,country = cm.countryName
  219. ,agent_branch_code=cu.branchId
  220. ,agentcode=cu.agentId
  221. ,date_format=NULL
  222. ,limitPerTran=0
  223. ,GMT_value=NULL
  224. ,currencyType=NULL
  225. ,extra_rate_bank=NULL
  226. ,cash_ledger_id=NULL
  227. ,@attemptsCount [ac]
  228. ,sessionTimeOutPeriod=NULL
  229. ,lastLoginTs=GETDATE()
  230. ,cm.countryId
  231. ,[address] = cu.city +'-Provience,South Korea'
  232. ,[address2]=cu.[address2]
  233. ,homePhone=cu.homePhone
  234. ,mobile=cu.mobile
  235. ,cm.countryCode
  236. ,utcTime=8
  237. ,mobile= @mobileNo
  238. ,city=cu.city
  239. ,postalCode=cu.postalCode
  240. ,membershipId=membershipId
  241. ,sdv.detailTitle idType
  242. ,cu.idNumber
  243. ,isForcedPwdChange = ISNULL(isForcedPwdChange,0)
  244. ,customerStatus
  245. ,cu.walletAccountNo
  246. ,primaryBankName=CASE WHEN cu.customerType='11048' THEN 'Mutual savings bank(050)' ELSE 'Kwangju Bank (034)' END
  247. ,nativeCountry = cm1.countryName
  248. ,nativeCountryId = cm1.countryId
  249. ,nativeCountryCode = cm1.countryCode
  250. ,occupation = sd.detailTitle
  251. ,idExpiryDate = CASE WHEN cu.idType='8008' THEN '2059-12-12' ELSE FORMAT(cu.idExpiryDate,'MM/dd/yyyy') END
  252. ,birthDate = FORMAT(cu.dob,'MM/dd/yyyy')
  253. ,accessToken = KFTC.accessToken
  254. ,clientUseCode = @clientUseCode
  255. ,clientId = @clientId
  256. ,clientSecret = @clientSecret
  257. ,gmeAccessToken = @accessToken
  258. ,gmeBankCode = @gmeBankCode
  259. ,gmeAccountNum = @gmeAccountNo
  260. FROM customerMaster cu WITH(NOLOCK)
  261. LEFT JOIN countryMaster cm WITH (NOLOCK) ON cm.countryId=cu.country
  262. LEFT JOIN countryMaster cm1 with(nolock) on cm1.countryId = cu.nativeCountry
  263. left join staticDataValue sdv with (nolock) on sdv.valueId=cu.idType
  264. left join staticDataValue sd with(nolock) on sd.valueId = cu.occupation
  265. LEFT JOIN dbo.vwBankLists vwbank WITH (NOLOCK) ON cu.bankName=vwbank.rowid
  266. LEFT JOIN KFTC_CUSTOMER_MASTER KFTC(NOLOCK) ON KFTC.customerId = CU.customerId
  267. WHERE cu.email= @customerEmail
  268. and ISNULL(cu.onlineUser, 'N')='Y'
  271. EXEC proc_applicationLogs
  272. @flag='login',
  273. @logType='Login',
  274. @createdBy = @customerEmail,
  275. @Reason='Login',
  276. @UserData = @UserData,
  277. @fieldValue = @UserInfoDetail,
  278. @IP = @ipAddress
  279. END
  281. ELSE IF @flag = 'loc'
  282. BEGIN
  283. UPDATE customerMaster SET
  284. isLocked = 'Y'
  285. WHERE email= @customerEmail and ISNULL(onlineUser, 'N')='Y'
  286. INSERT INTO userLockHistory(userName, lockReason, createdBy, createdDate)
  287. SELECT @customerEmail, @lockReason, 'system',GETDATE()
  288. SELECT 0 errorCode, 'Your account has been locked. Please, contact your administrator.' mes, @customerEmail id
  289. END
  291. ELSE IF @flag='availbal'
  292. BEGIN
  293. SELECT ISNULL(availableBalance, 0.00) AS availableBalance FROM dbo.customerMaster(nolock)
  294. WHERE email=@customerEmail
  296. --SELECT 0 errorCode,ISNULL(a.clr_bal_amt, 0.00) AS availableBalance
  297. --FROM dbo.customerMaster c(nolock)
  298. --INNER JOIN FastMoneyPro_account.dbo.ac_master a(nolock) ON A.acct_num = c.walletAccountNo
  299. --WHERE c.email = @customerEmail
  300. END
  301. ELSE IF @flag='checkpin'
  302. BEGIN
  303. DECLARE @TXN_PIN VARCHAR(30)
  304. IF NOT EXISTS(SELECT 'X' FROM customerMaster WITH (NOLOCK)
  305. WHERE username=@customerEmail and ISNULL(onlineUser, 'N')='Y')
  306. BEGIN
  307. SELECT @email=email,
  308. @customerPwd=customerPassword,
  309. @isActive=isactive,
  310. @onlineUser=onlineuser,
  311. @isLocked=isLocked,
  312. @ccountry=country,
  313. @customerStatus=customerStatus,
  314. @lastLoginDate=lastLoginTs,
  315. @loginAttempt = ISNULL(invalidAttemptPinCount, 0),
  316. @TXN_PIN = txnPin
  317. FROM customerMaster WITH (NOLOCK)
  318. WHERE username=@customerEmail and ISNULL(onlineUser, 'N')='Y'
  319. END
  320. ELSE
  321. BEGIN
  322. SELECT @email=email,
  323. @customerPwd=customerPassword,
  324. @isActive=isactive,
  325. @onlineUser=onlineuser,
  326. @isLocked=isLocked,
  327. @ccountry=country,
  328. @customerStatus=customerStatus,
  329. @lastLoginDate=lastLoginTs,
  330. @loginAttempt = ISNULL(invalidAttemptPinCount, 0),
  331. @TXN_PIN = txnPin
  332. FROM customerMaster WITH (NOLOCK)
  333. WHERE username=@customerEmail and ISNULL(onlineUser, 'N')='Y'
  334. END
  335. IF (ISNULL(@password, '') = ISNULL(@TXN_PIN, '-1'))
  336. BEGIN
  337. UPDATE customerMaster SET
  338. invalidAttemptPinCount = 0
  339. WHERE username = @customerEmail and ISNULL(onlineUser, 'N')='Y'
  341. SELECT 0 errorCode, 'Success' msg, @customerEmail id
  342. RETURN;
  343. END
  346. SELECT TOP 1 @attemptsCount = loginAttemptCount FROM passwordFormat WITH(NOLOCK)
  348. IF (ISNULL(@isLocked, 'N') IN ('B', 'Y')) OR ((@loginAttempt - @attemptsCount) = -1)
  349. BEGIN
  350. SELECT 18 errorCode, 'Too many wrong attempts, please contact JME Support!' mes, @customerEmail id
  351. EXEC proc_applicationLogs
  352. @flag='login',
  353. @logType='Send Transaction',
  354. @createdBy = @customerEmail,
  355. @Reason= 'Reason = Too many wrong attempts sending transaaction.'
  356. RETURN
  357. END
  359. IF (ISNULL(@password, '') <> ISNULL(@TXN_PIN, '-1'))
  360. BEGIN
  361. SET @UserInfoDetail = 'Reason = Incorrect PIN .-:::-' + @UserInfoDetail
  363. SET @loginAttempt = @loginAttempt + 1
  365. UPDATE customerMaster SET invalidAttemptPinCount = @loginAttempt, isLocked = CASE WHEN @loginAttempt > @attemptsCount THEN 'B' ELSE 'N' END
  366. WHERE username = @customerEmail and ISNULL(onlineUser, 'N')='Y'
  368. SET @InvalidReason = CASE WHEN @loginAttempt > @attemptsCount THEN 'Number of invalid PIN attempts exceeded!' ELSE 'Invalid PIN' END
  369. SET @InvalidMsg = 'Send txn Failed - Invalid PIN, you have ' + CAST((@attemptsCount - @loginAttempt) AS VARCHAR) + ' Attempts Left'
  371. SELECT 1 errorCode, @InvalidMsg mes, @customerEmail id
  372. EXEC proc_applicationLogs
  373. @flag='login',
  374. @logType='Send Transaction',
  375. @createdBy = @customerEmail,
  376. @Reason= 'Reason = wrong transaction PIN.'
  377. RETURN
  378. END
  379. END
  380. ELSE IF @flag='checkpass'
  381. BEGIN
  382. IF NOT EXISTS(SELECT 'X' FROM customerMaster WITH (NOLOCK)
  383. WHERE username=@customerEmail and ISNULL(onlineUser, 'N')='Y')
  384. BEGIN
  385. SELECT @email=email,
  386. @customerPwd=customerPassword,
  387. @isActive=isactive,
  388. @onlineUser=onlineuser,
  389. @isLocked=isLocked,
  390. @ccountry=country,
  391. @customerStatus=customerStatus,
  392. @lastLoginDate=lastLoginTs,
  393. @loginAttempt = ISNULL(invalidAttemptCount, 0),
  394. @TXN_PIN = txnPin
  395. FROM customerMaster WITH (NOLOCK)
  396. WHERE username=@customerEmail and ISNULL(onlineUser, 'N')='Y'
  397. END
  398. ELSE
  399. BEGIN
  400. SELECT @email=email,
  401. @customerPwd=customerPassword,
  402. @isActive=isactive,
  403. @onlineUser=onlineuser,
  404. @isLocked=isLocked,
  405. @ccountry=country,
  406. @customerStatus=customerStatus,
  407. @lastLoginDate=lastLoginTs,
  408. @loginAttempt = ISNULL(invalidAttemptCount, 0),
  409. @TXN_PIN = txnPin
  410. FROM customerMaster WITH (NOLOCK)
  411. WHERE username=@customerEmail and ISNULL(onlineUser, 'N')='Y'
  412. END
  413. IF (@customerPwd = dbo.FNAEncryptString(@password))
  414. BEGIN
  415. UPDATE customerMaster SET
  416. invalidAttemptCount = 0
  417. WHERE username = @customerEmail and ISNULL(onlineUser, 'N')='Y'
  419. SELECT 0 errorCode, 'Success' msg, @customerEmail id
  420. RETURN;
  421. END
  423. SELECT TOP 1 @attemptsCount = loginAttemptCount FROM passwordFormat WITH(NOLOCK)
  425. IF (ISNULL(@isLocked, 'N') IN ('B', 'Y')) OR ((@loginAttempt - @attemptsCount) = -1)
  426. BEGIN
  427. SELECT 9 errorCode, 'Too many wrong attempts, please contact GME Support!' mes, @customerEmail id
  428. EXEC proc_applicationLogs
  429. @flag='login',
  430. @logType='Send Transaction',
  431. @createdBy = @customerEmail,
  432. @Reason= 'Reason = Too many wrong attempts sending transaaction.'
  433. RETURN
  434. END
  436. IF (@customerPwd <> dbo.FNAEncryptString(@password))
  437. BEGIN
  438. SET @UserInfoDetail = 'Reason = Incorrect password .-:::-' + @UserInfoDetail
  440. SET @loginAttempt = @loginAttempt + 1
  442. UPDATE customerMaster SET invalidAttemptCount = @loginAttempt, isLocked = CASE WHEN @loginAttempt > @attemptsCount THEN 'B' ELSE 'N' END
  443. WHERE email = @customerEmail and ISNULL(onlineUser, 'N')='Y'
  445. SET @InvalidReason = CASE WHEN @loginAttempt > @attemptsCount THEN 'Number of invalid password attempts exceeded!' ELSE 'Invalid Password' END
  446. SET @InvalidMsg = 'Login Failed - Invalid Password, you have ' + CAST((@attemptsCount - @loginAttempt) AS VARCHAR) + ' Attempts Left'
  448. SELECT 1 errorCode, @InvalidMsg mes, @customerEmail id
  449. EXEC proc_applicationLogs
  450. @flag='login',
  451. @logType='Send Transaction',
  452. @createdBy = @customerEmail,
  453. @Reason= 'Reason = wrong transaction password.'
  454. RETURN
  455. END
  456. END
  458. END TRY
  459. BEGIN CATCH
  460. IF @@TRANCOUNT > 0
  461. ROLLBACK TRANSACTION
  462. DECLARE @errorMessage VARCHAR(MAX)
  463. SET @errorMessage = ERROR_MESSAGE()
  464. EXEC proc_errorHandler 1, @errorMessage,NULL
  465. END CATCH