public override bool IsUserInRole(string username, string roleName)
{
var roleFound = false;
using (var conn = this.CreateConnection())
{
if (conn.HasConnection)
{
var sqlQuery = string.Format(
" SELECT ur.UserRoleID " +
" FROM {0}UserRoles ur " +
" WHERE ur.BlogID = {1}blogid " +
" AND ur.UserName = {1}name " +
" AND ur.role = {1}role", this.tablePrefix, this.parmPrefix);
using (var cmd = conn.CreateTextCommand(sqlQuery))
{
var parms = cmd.Parameters;
cmd.Parameters.Add(conn.CreateParameter(FormatParamName("blogid"), Blog.CurrentInstance.Id.ToString()));
parms.Add(conn.CreateParameter(FormatParamName("name"), username));
parms.Add(conn.CreateParameter(FormatParamName("role"), roleName));
using (var rdr = cmd.ExecuteReader())
{
roleFound = rdr.Read();
}
}
}
}
return roleFound;
}
