public ActionResult Login()
{
string controllername = "";
ViewBag.AlertMessage = "";
string actionname = "";
string username = Request.Form["Email"];
string password = Request.Form["Password"];
string domain = "";
string connectionString = ConfigurationManager.ConnectionStrings["NHSConStr"].ConnectionString;
DBEngine dBEngine = new DBEngine(connectionString);
bool isValidFromAD = false;
if (username.IndexOf("\\") > 0)
{
username = username.Split("\\".ToCharArray())[1];
// domain = username.Split("\\".ToCharArray())[0];
}
domain = dBEngine.GetDomainName(0);
AppUsers usermodel = new AppUsers();
try
{
//isValidFromAD = ValidateCredentials(username, password, domain);
isValidFromAD = true;
if (isValidFromAD)
{
usermodel = dBEngine.ValidateUser(username, password);
actionname = "Index";
if (usermodel.IsFound)
{
//Session.Abandon();
Session.Timeout = 1440;
Session["LoginUserID"] = usermodel.ID;
Session["UserName"] = username;
Session["FirstName"] = usermodel.FirstName;
Session["LastName"] = usermodel.LastName;
Session["StartDate"] = "";
Session["EndDate"] = "";
Session["WardDeath"] = "";
Session["PatientType"] = "";
Session["DischargeConsultant"] = "";
Session["Speciality"] = "";
Session["TotalDeaths"] = 0;
Session["QAPCount"] = 0;
Session["MedCount"] = 0;
Session["Role"] = usermodel.Role;
int dbReturn = dBEngine.UpdateLoginDateTime(usermodel.ID);
controllername = "Home";
}
else
{
Alert alertMessage = new Alert();
alertMessage.AlertType = ALERTTYPE.Error;
alertMessage.MessageType = ALERTMESSAGETYPE.TextWithClose;
alertMessage.Message = "You are not authorised to access this app. Please call 8066/6761/5252/8335.";
TempData["AlertMessage"] = alertMessage.Message;
controllername = "Account";
}
}
else
{
Alert alertMessage = new Alert();
alertMessage.AlertType = ALERTTYPE.Error;
alertMessage.MessageType = ALERTMESSAGETYPE.TextWithClose;
alertMessage.Message = "Credentials provided do not match with AD.";
TempData["AlertMessage"] = alertMessage.Message;
controllername = "Account";
}
}
catch (Exception ex)
{
Alert alertMessage = new Alert();
alertMessage.AlertType = ALERTTYPE.Error;
alertMessage.MessageType = ALERTMESSAGETYPE.TextWithClose;
alertMessage.Message = "SQL/AD Connection Error. Error Details - " + ex.Message;
TempData["AlertMessage"] = alertMessage.Message;
controllername = "Account";
}
return(RedirectToAction(actionname, controllername));// RedirectToAction("Index");
}
