public ActionResult ChangePassword(ChangePassword cp)
{
cp.msg = "";
if (ModelState.IsValid)
{
try
{
int userId = int.Parse(User.Identity.Name);
string encPass = EncrypHelpers.Encrypt(cp.OldPassword);
ass_user user = db.ass_user
.Where(a => a.id == userId && a.password.Equals(encPass))
.FirstOrDefault();
if (user != null)
{
user.password = EncrypHelpers.Encrypt(cp.NewPassword);
db.SaveChanges();
cp.msg = "Password Has Been Changed.";
}
else
{
ModelState.AddModelError("", "OldPassword is incorrect!");
}
}
catch (Exception ex)
{
ModelState.AddModelError("", ex.ToString());
}
}
//return RedirectToAction("AfterLogin");
return(View(cp));
}
public JsonResult ResetPassword(LoginModel dataChange)
{
try
{
if (Session["username"] == null || Session["username"].ToString().ToLower() != "admin")
{
return(Json(new { success = 0, username = dataChange.username, ex = "You don't have a privillages to reset password." }));
}
ass_user user = db.ass_user
.Where(a => a.username == dataChange.username)
.FirstOrDefault();
if (user == null)
{
return(Json(new { success = 0, username = dataChange.username, ex = "User Not Found." }));
}
user.password = EncrypHelpers.Encrypt("123456");
db.SaveChanges();
return(Json(new { success = 1, username = dataChange.username, ex = "Password has been reset." }));
}
catch (Exception ex)
{
return(Json(new { success = 0, username = dataChange.username, ex = ex.ToString() }));
}
}
public ActionResult Login(LoginModel userLogin)
{
if (ModelState.IsValid)
{
try
{
string encPass = EncrypHelpers.Encrypt(userLogin.password);
ass_user user = db.ass_user
.Where(a => a.username.Equals(userLogin.username) && a.password.Equals(encPass))
.FirstOrDefault();
if (user != null)
{
Session["userid"] = user.id;
Session["username"] = user.username;
Session["fullname"] = user.fullname;
FormsAuthentication.SetAuthCookie(user.id.ToString(), false);
return(RedirectToAction("Index", "AssReminder"));
}
else
{
ModelState.AddModelError("", "Login data is incorrect!");
}
}
catch (Exception ex)
{
ModelState.AddModelError("", ex.ToString());
}
}
//return RedirectToAction("AfterLogin");
return(View(userLogin));
}
public ActionResult DeleteConfirmed(int id)
{
if (Session["username"] == null || Session["username"].ToString().ToLower() != "admin")
{
return(new HttpStatusCodeResult(HttpStatusCode.NotFound));
}
ass_user ass_user = db.ass_user.Find(id);
db.ass_user.Remove(ass_user);
db.SaveChanges();
return(RedirectToAction("Index"));
}
// GET: AssUser/Details/5
public ActionResult Details(int?id)
{
if (id == null)
{
return(new HttpStatusCodeResult(HttpStatusCode.BadRequest));
}
ass_user ass_user = db.ass_user.Find(id);
if (ass_user == null)
{
return(HttpNotFound());
}
return(View(ass_user));
}
public ActionResult Edit([Bind(Include = "id,username,fullname")] ass_user ass_user)
{
if (Session["username"] == null || Session["username"].ToString().ToLower() != "admin")
{
return(new HttpStatusCodeResult(HttpStatusCode.NotFound));
}
if (ModelState.IsValid)
{
ass_user.audit_date = DateTime.Now;
ass_user.user_id = int.Parse(User.Identity.Name);
db.Entry(ass_user).State = EntityState.Modified;
db.SaveChanges();
return(RedirectToAction("Index"));
}
return(View(ass_user));
}
// GET: AssUser/Delete/5
public ActionResult Delete(int?id)
{
if (Session["username"] == null || Session["username"].ToString().ToLower() != "admin")
{
return(new HttpStatusCodeResult(HttpStatusCode.NotFound));
}
if (id == null)
{
return(new HttpStatusCodeResult(HttpStatusCode.BadRequest));
}
ass_user ass_user = db.ass_user.Find(id);
if (ass_user == null)
{
return(HttpNotFound());
}
return(View(ass_user));
}
public ActionResult Create([Bind(Include = "id,username,fullname")] ass_user ass_user)
{
if (Session["username"] == null || Session["username"].ToString().ToLower() != "admin")
{
return(new HttpStatusCodeResult(HttpStatusCode.NotFound));
}
if (ModelState.IsValid)
{
ass_user.password = EncrypHelpers.Encrypt("123456");
ass_user.audit_date = DateTime.Now;
ass_user.user_id = int.Parse(User.Identity.Name);
db.ass_user.Add(ass_user);
db.SaveChanges();
return(RedirectToAction("Index"));
}
return(View(ass_user));
}
