public async Task <IActionResult> OnPostResetPassword()
{
ResetPW resetPW = new ResetPW();
resetPW.ResetLink = Request.Form["LinkInfo"];
resetPW.Password = Request.Form["firstPassword"];
HttpResponseMessage Result = await DS.PostAsync(resetPW, "user/ResetPassword");
return(new JsonResult(Result.StatusCode.ToString()));
}
public IActionResult ProcessPasswordReset(string reset_pw, ResetPW resetPW)
{
if (ModelState.IsValid)
{
User user = dbContext.Users.FirstOrDefault(u => u.PasswordReset == reset_pw);
PasswordHasher <User> Hasher = new PasswordHasher <User>();
user.Password = Hasher.HashPassword(user, resetPW.Password);
dbContext.SaveChanges();
return(RedirectToAction("Login"));
}
return(View("ResetPasswordForm"));
}
public IActionResult ResetPW(ResetPW reset)
{
if (!ModelState.IsValid)
{
ViewData["Message"] = "Invalid Input";
ViewData["MsgType"] = "warning";
return(View("ResetPW"));
}
else
{
//string UserName = reset.UserName.ToString();
string UserName = TempData["un"].ToString();
string password = reset.User_PW_New.ToString();
string cfmpassword = reset.ConfirmPasswordNew.ToString();
string sql = @"SELECT * FROM AppUser WHERE UserName='******'";
string select = String.Format(sql, UserName);
DataTable dt = DBUtl.GetTable(select);
if (password.Equals(cfmpassword))
{
string update = @"UPDATE AppUser SET User_PW = HASHBYTES('SHA1','{1}') WHERE UserName = '******'";
int res = DBUtl.ExecSQL(update, UserName, password);
if (res == 1)
{
ViewData["Message"] = "Password reset successful!";
ViewData["MsgType"] = "success";
return(View("ResetPWActivate"));
}
else
{
ViewData["Message"] = "Password reset unsuccessful.";
ViewData["MsgType"] = "warning";
return(View("ResetPW"));
}
}
else
{
ViewData["Message"] = "Username cannot be verified.";
ViewData["MsgType"] = "danger";
}
return(View("ResetPW"));
}
}
