public ActionResult QuestionAndAnswer(QuestionAndAnswerModel model, string userName, string PasswordQuestion, string PasswordAnswer)
        {
            if (ModelState.IsValid)
            {
                RegisterPasswordSuccessModel rpsModel = new RegisterPasswordSuccessModel();
                rpsModel = ResetPassword(userName, PasswordAnswer, GetLoginUrl());

                if (rpsModel.RegisterPasswordSuccess)
                {
                    return RedirectToAction("PasswordResetFinal", new { userName = userName });
                }
                else
                {
                    ModelState.AddModelError("", rpsModel.ErrorMessage);
                    return View(model);
                }
            }

            // If we got this far, something failed, redisplay form
            return View(model);
        }
        // **************************************
        // URL: /Account/QuestionAndAnswer
        // **************************************
        public ActionResult QuestionAndAnswer(string userName)
        {
            if (!Membership.EnablePasswordReset)
            {
                ModelState.AddModelError("", ErrorCodeToString(AccountCreateStatus.PasswordResetDisabled));
                return View();
            }

            MembershipUser user = Membership.GetUser(userName);
            if (user == null)
            {
                ModelState.AddModelError("", ErrorCodeToString(AccountCreateStatus.InvalidUserName));
                return View();
            }
            else
            {
                ViewData["UserName"] = userName;
                ViewData["Question"] = Membership.GetUser(userName).PasswordQuestion;

                QuestionAndAnswerModel model = new QuestionAndAnswerModel();
                model.UserName = userName;
                model.PasswordQuestion = Membership.GetUser(userName).PasswordQuestion;

                return View(model);
            }
        }