public IActionResult LoginPage(LoginIDViewModel login)
{
var isLoggedIn = _httpContextAccessor.HttpContext.Session.GetInt32("isLoggedIn");
if (isLoggedIn == 1)
{
return(View("/Views/GameWindow/PlayerDetails.cshtml"));
}
else
{
return(View(login));
}
}
public async Task <IActionResult> Login(LoginIDViewModel logDetails)
{
// Open SQL - DB connection
await mySqlConnection.OpenAsync();
// setup connection
using var cmd = new MySqlCommand();
cmd.Connection = mySqlConnection;
// set variables for the login properties
string password = logDetails.LoginPwd;
string email = logDetails.LoginID;
string mysqlEmail = "";
string mysqlPass = "";
// get SQL statement to be executed
cmd.CommandText = "SELECT email, password FROM users WHERE email = @email AND password = @password";
cmd.Parameters.AddWithValue("@email", email);
cmd.Parameters.AddWithValue("@password", password);
var reader = await cmd.ExecuteReaderAsync();
while (reader.Read())
{
mysqlEmail = reader.GetString("email");
mysqlPass = reader.GetString("password");
}
if (mysqlEmail == email && mysqlPass == password)
{
_httpContextAccessor.HttpContext.Session.SetString("_email", email);
_httpContextAccessor.HttpContext.Session.SetInt32("isLoggedIn", 1);
return(View("/Views/GameWindow/PlayerDetails.cshtml"));
}
else
{
return(View("LoginPage"));
}
}
