[HttpPost] // thuc hien doi mat khau nguoi dung
public ActionResult ChangePassword()
{
string password = Request["password"];
using (var _context = new DB_A6A231_DAQLTMDTEntities())
{
try
{
// goi stored proc de doi mat khau user
var sqlParams = new SqlParameter[]
{
new SqlParameter("@pass", password),
new SqlParameter("@email", Session["user_email"]),
};
_context.Database.ExecuteSqlCommand("dbo.sp_AccountChangePassword @email, @pass", sqlParams);
Response.Write("<script>alert('Password changed')</script>");
Session.Clear();
return(View("Login"));
}
catch
{
Response.Write("<script>alert('Password not changed')</script>");
return(View("Error"));
}
}
}
[HttpPost]// thuc hien dang nhap
public ActionResult VerifyLogin(User user)
{
// kiem tra du lieu nhap
if (ModelState.IsValid)
{
// truy van csdl
using (var _context = new DB_A6A231_DAQLTMDTEntities())
{
// query id tu email va password de kiem tra dang nhap
//var obj = (from u in _context.Users where u.Email == user.Email && u.Password == user.Password select u).FirstOrDefault();
var obj = db.sp_Login(user.Email, user.Password).FirstOrDefault();
if (obj != null)
{
Session["userID"] = obj.Id.ToString();
Session["username"] = obj.Username.ToString();
//Lay mat khau người dùng
Session["pass"] = user.Password.ToString();
if (obj.Avatar != null)
{
Session["Avatar"] = obj.Avatar.ToString();
}
else
{
Session["Avatar"] = "#.png";
}
//string username = obj.Username.ToString();
if (obj.RoleID == 3)
{
return(RedirectToAction("OrderList", "Shipper"));
}
else
{
Response.Write("<script>alert('Invalid Email or Password')</script>");
return(RedirectToAction("Login", "Shipper"));
}
}
else
{
Response.Write("<script>alert('Invalid Email or Password')</script>");
return(View("Error"));
}
}
}
return(View("Error"));
}
public ActionResult VerifyByEmail()// gui email co kem ma xac nhan cho user
{
string user_email = Request["email"];
using (var _context = new DB_A6A231_DAQLTMDTEntities())
{
// query id tu email va password de kiem tra dang nhap
var obj = (from u in _context.Users where u.Email == user_email select u).FirstOrDefault();
if (obj != null)
{
Session["user_email"] = user_email;
ViewBag.email = user_email;
string web_email = "*****@*****.**";
// Cau hinh thong tin gmail
var mail = new SmtpClient("smtp.gmail.com", 25)
{
Credentials = new NetworkCredential(web_email, "123asd456qwe"),
EnableSsl = true
};
// tao gmail
var message = new MailMessage();
message.From = new MailAddress(web_email);
message.ReplyToList.Add(web_email);
message.To.Add(new MailAddress(user_email));
// Create a random 6-digits number for verification code
Random random = new Random();
int code = random.Next(100000, 999999);
ViewBag.code = code;
message.Subject = "Your verification code";
message.Body = code + " is your LTWeb verification code.";
// gui gmail
mail.Send(message);
return(View("VerificationCode"));
}
else
{
Response.Write("<script>alert('Email not found')</script>");
return(View("ForgotPassword"));
}
}
}
public ActionResult UserProfile()
{
using (var _context = new DB_A6A231_DAQLTMDTEntities())
{
// query id tu email va password de kiem tra dang nhap
int userID = Convert.ToInt32(Session["userID"]);
var obj = (from u in _context.Users where u.Id == userID select u).FirstOrDefault();
ViewBag.Username = obj.Username;
ViewBag.Email = obj.Email;
ViewBag.Name = obj.Name;
ViewBag.Address = obj.Address;
ViewBag.Gender = obj.Gender;
ViewBag.Phone = obj.Phone;
ViewBag.Birthday = obj.Birthday;
}
return(View());
}
[HttpPost]// thuc hien dang nhap
public ActionResult VerifyLogin(User user)
{
// kiem tra du lieu nhap
if (ModelState.IsValid)
{
// truy van csdl
using (var _context = new DB_A6A231_DAQLTMDTEntities())
{
// query id tu email va password de kiem tra dang nhap
//var obj = (from u in _context.Users where u.Email == user.Email && u.Password == user.Password select u).FirstOrDefault();
var obj = db.sp_Login(user.Email, user.Password).FirstOrDefault();
if (obj != null)
{
Session["userID"] = obj.Id.ToString();
Session["username"] = obj.Username.ToString();
if (obj.Avatar != null)
{
Session["avatar"] = obj.Avatar.ToString();
}
else
{
Session["avatar"] = "ava.png";
}
//Kiem tra tai khoản có phải nhân viên
int roleID = obj.RoleID.Value;
if (roleID == 4)
{
Session["roleID"] = 4;
Session["userID"] = 2;
}
//string username = obj.Username.ToString();
return(RedirectToAction("Dashboard", "Acount"));
}
else
{
Response.Write("<script>alert('Invalid Email or Password')</script>");
return(View("Error"));
}
}
}
return(View("Error"));
}
[HttpPost] // thuc hien dang ki
public ActionResult RegisterUser(User user)
{
// kiem tra du lieu nhap
if (ModelState.IsValid)
{
using (var _context = new DB_A6A231_DAQLTMDTEntities())
{
try
{
var obj = (from u in _context.Users where u.Email == user.Email select u).FirstOrDefault();
if (obj == null)
{
try
{
// goi stored proc de them user vao csdl
var sqlParams = new SqlParameter[]
{
new SqlParameter("@username", user.Username),
new SqlParameter("@pass", user.Password),
new SqlParameter("@email", user.Email),
new SqlParameter("@roleId", 2)
};
//_context.Database.ExecuteSqlCommand("dbo.sp_AccountResgister @username, @pass, @email", sqlParams);
_context.Database.ExecuteSqlCommand("insert into Users(Username, Email, Password, RoleID) values (@username, @email, @pass, @roleId)", sqlParams);
Response.Write("<script>alert('Registered!')</script>");
return(View("Login"));
}
catch
{
return(View("Error"));
}
}
else
{
Response.Write("<script>alert('Username or email existed')</script>");
return(View("Error"));
}
}
catch { }
}
}
return(View("Error"));
}
[HttpPost]// thuc hien dang nhap
public ActionResult VerifyLogin(User user)
{
// kiem tra du lieu nhap
if (ModelState.IsValid)
{
string checkRemember = Request["checkMe"];
// truy van csdl
using (var _context = new DB_A6A231_DAQLTMDTEntities())
{
// query id tu email va password de kiem tra dang nhap
//var obj = (from u in _context.Users where u.Email == user.Email && u.Password == user.Password select u).FirstOrDefault();
var obj = db.sp_Login(user.Email, user.Password).FirstOrDefault();
if (obj != null)
{
if (checkRemember == "1") //(check Remember me
{
Response.Cookies["email"].Value = user.Email;
Response.Cookies["pass"].Value = user.Password;
Response.Cookies["email"].Expires = DateTime.Now.AddMinutes(1);
Response.Cookies["pass"].Expires = DateTime.Now.AddMinutes(1);
}
else if (checkRemember == null)
{
Response.Cookies["email"].Expires = DateTime.Now.AddMinutes(-1);
Response.Cookies["pass"].Expires = DateTime.Now.AddMinutes(-1);
}
Session["userID"] = obj.Id.ToString();
Session["username"] = obj.Username.ToString();
Session["roleID"] = obj.RoleID.ToString();
//Lay mat khau người dùng
Session["pass"] = user.Password.ToString();
if (obj.Avatar != null)
{
Session["Avatar"] = obj.Avatar.ToString();
}
else
{
Session["Avatar"] = "#.png";
}
//Lay dia chi mac dinh cua nguoi dung de lam dia chỉ mua hang
BuyerAddressClient buyerAddressClient = new BuyerAddressClient();
var addressList = buyerAddressClient.find(Convert.ToInt32(Session["userID"]));
int addressID = addressList.Where(x => x.default_address == 1).Select(x => x.Address_ID).FirstOrDefault();
Session["Address_ID"] = addressID;
if (Convert.ToInt32(Session["Address_ID"]) == 0)
{
Session["Address_ID"] = -1;
}
//string username = obj.Username.ToString();
return(RedirectToAction("Index", "MainPage", new { Area = "Buyer" }));
}
else
{
Response.Write("<script>alert('Invalid Email or Password')</script>");
return(View("Error"));
}
}
}
return(View("Error"));
}
