public ActionResult Login(UserLoginVM model) //notice we’re using the ViewModel { if (ModelState.IsValid) { //var hashedPassword = Crypto.HashPassword(model.Password); var hashed = HashClass.Encode(model.Password); var db = new MyDBEntities(); var v = db.users.Where(u => u.Username.Equals(model.Username) && u.Password.Equals(hashed)).FirstOrDefault(); if (v != null) { ViewData["Message"] = "Login Successful"; Session["loggedIn"] = true; Session["user"] = v.Username; Session["id"] = v.Id; Session["isAdmin"] = v.isAdmin; if ((int)Session["isAdmin"] == 1) { return(RedirectToAction("DisplayCars", "Car")); } else { return(RedirectToAction("UserArea", "Car")); } } else { ViewData["Message"] = "Login Unsuccessful"; } } return(View(model)); }