public ActionResult LogIn(AccountViewModel avm)
{
AccountModel am = new AccountModel();
if (string.IsNullOrEmpty(avm.Account.Username) || string.IsNullOrEmpty(avm.Account.Password) || am.Login(avm.Account.Username, avm.Account.Password) == null)
{
ViewBag.Error = "Tài khoản không hợp lệ";
return View("Index");
}
SessionPersister.Username = avm.Account.Username;
Session["Account"] = am.Login(avm.Account.Username, avm.Account.Password) ;
return RedirectToAction("Index", "Banner");
//return View("Success");
}
public override void OnAuthorization(AuthorizationContext filterContext)
{
if (string.IsNullOrEmpty(SessionPersister.Username))
{
filterContext.Result = new RedirectToRouteResult(new RouteValueDictionary(new { controller = "Account", action = "Index" }));
}
else
{
AccountModel am = new AccountModel();
CustomPrincipal mp = new CustomPrincipal(am.Find(SessionPersister.Username));
if (!mp.IsInRole(Roles))
{
filterContext.Result = new RedirectToRouteResult(new RouteValueDictionary(new { controller = "AccessDenied", action = "Index" }));
}
}
}