// GET api/ForgotPassword
public HttpResponseMessage Post(ResetPasswordRequest request)
{
helpsDbContext context = new helpsDbContext();
// Find the User with the token which was emailed to them
User user = context.Users.Where(a => a.ForgotPasswordToken == request.ResetToken).SingleOrDefault();
if (user != null)
{
if (request.Password != request.ConfirmPassword)
{
request.Errors = "Passwords do not match";
return(ViewHelper.View("ResetPassword/Index", request));
}
else if (request.Password.Length < 8)
{
request.Errors = "Password must be minimum 8 characters";
return(ViewHelper.View("ResetPassword/Index", request));
}
byte[] salt = LoginProviderUtil.generateSalt();
user.Salt = salt;
user.SaltedAndHashedPassword = LoginProviderUtil.hash(request.Password, salt);
user.ForgotPasswordToken = Guid.NewGuid().ToString();
context.Entry(user).State = System.Data.Entity.EntityState.Modified;
context.SaveChanges();
return(ViewHelper.View("ResetPassword/Success"));
}
request.Errors = "An error occured";
return(ViewHelper.View("ResetPassword/Index", request));
}
// GET api/ConfirmEmail
public HttpResponseMessage Get(string Token)
{
helpsDbContext context = new helpsDbContext();
// Find the User with the token which was emailed to them
User user = context.Users.Where(a => a.ConfirmToken == Token).SingleOrDefault();
if (user != null)
{
// Mark the user as confirmed
user.Confirmed = true;
// Update the database
context.Entry(user).State = System.Data.Entity.EntityState.Modified;
context.SaveChanges();
//Return success
return(ViewHelper.View("ConfirmEmail/Index", new { Message = "Email confirmed! Please navigate back to the app to log in" }));
}
return(ViewHelper.View("ConfirmEmail/Index", new { Message = "An error occured" }));
}