public ActionResult Login(LoginModel info) { using (BLLContext ctx = new BLLContext()) { UserBO user = ctx.GetUserByUsername(info.Username); if (user == null) { info.Message = $"The Username '{info.Username}' does not exist in the database"; return(View(info)); } string pass = info.Password; RoleBO role = ctx.GetRoleByID(user.RoleID_FK); if (pass == user.Password) { Session["AUTHUsername"] = info.Username; Session["AuthRoles"] = role.Role; return(Redirect(info.ReturnURL)); } info.Message = "The password was incorrect"; return(View(info)); } }