public ActionResult ChangePassword(ChangePasswordForm form)
        {
            // prevent hackers!
            form.UserName = User.Identity.Name;

            _changePasswordFormValidator.Validate(form).Populate(ModelState);

            if (ModelState.IsValid)
            {
                _userService.ChangePassword(form.UserName, form.NewPassword);
                return View("ChangePasswordSuccess");
            }

            return View(form);
        }
 public ActionResult ChangePassword()
 {
     var form = new ChangePasswordForm();
     return View(form);
 }