// GET api/ForgotPassword
public HttpResponseMessage Post(ResetPasswordRequest request)
{
helpsDbContext context = new helpsDbContext();
// Find the User with the token which was emailed to them
User user = context.Users.Where(a => a.ForgotPasswordToken == request.ResetToken).SingleOrDefault();
if (user != null)
{
if (request.Password != request.ConfirmPassword)
{
request.Errors = "Passwords do not match";
return ViewHelper.View("ResetPassword/Index", request);
} else if (request.Password.Length < 8) {
request.Errors = "Password must be minimum 8 characters";
return ViewHelper.View("ResetPassword/Index", request);
}
byte[] salt = LoginProviderUtil.generateSalt();
user.Salt = salt;
user.SaltedAndHashedPassword = LoginProviderUtil.hash(request.Password, salt);
user.ForgotPasswordToken = Guid.NewGuid().ToString();
context.Entry(user).State = System.Data.Entity.EntityState.Modified;
context.SaveChanges();
return ViewHelper.View("ResetPassword/Success");
}
request.Errors = "An error occured";
return ViewHelper.View("ResetPassword/Index", request);
}
// GET api/ResetPassword
public HttpResponseMessage Get(string Token)
{
ResetPasswordRequest model = new ResetPasswordRequest();
model.Errors = "8 characters minimum";
model.ResetToken = Token;
return ViewHelper.View("ResetPassword/Index", model);
}
