public ActionResult ChangePass(FormCollection c) { if (c["changepass"] != null) { string cpassp = c["prepass"].ToString(); string uid = c["umail"].ToString(); string utype = c["utype"].ToString(); string upass = c["prepass"].ToString(); ChangePassList l = CheckPass1(uid, uid, utype); if (l.UserMail == uid && l.PassPre == upass && l.UserType == utype) { string cpass1 = c["newpass1"].ToString(); string cpass2 = c["newpass2"].ToString(); string mail = c["umail"].ToString(); if (cpass1 == cpass2) { if (UpdatePass(cpass1, mail)) { ViewBag.Msg = "Changed"; } else { ViewBag.Msg = "Not Changed"; } } } else { ViewBag.Msg = "Not matched to previous pass..."; } } return(View()); }
public ChangePassList CheckPass1(string uid, string upass, string utype) { ChangePassList ll = new ChangePassList(); SqlConnection con = new SqlConnection("Data Source=ALAUDDIN\\SQLEXPRESS;Initial Catalog=dbase;Integrated Security=True"); SqlCommand cmd = new SqlCommand("select userMail,userPass,userType from UserAcc where userMail=@umail ", con); cmd.Parameters.AddWithValue("@umail", uid); SqlDataReader dr; con.Open(); dr = cmd.ExecuteReader(); if (dr.Read()) { ll.UserMail = dr.GetValue(0).ToString(); ll.PassPre = dr.GetValue(1).ToString(); ll.UserType = dr.GetValue(2).ToString(); } con.Close(); return(ll); }