public async Task<HttpResponseMessage> Post(LoginViewModel model) { if (ModelState.IsValid && await _activeDirectoryOperations.ValidateUserAsync(model.UserName, model.Password)) { var user = await _userManager.FindByIdAsync(model.UserName); if (user != null) { await SignInAsync(user, model.RememberMe); return Request.CreateResponse(HttpStatusCode.OK); } } return Request.CreateResponse(HttpStatusCode.Forbidden); }
public async Task<ActionResult> Login(LoginViewModel model, string returnUrl) { if (ModelState.IsValid && await _activeDirectoryOperations.ValidateUserAsync(model.UserName, model.Password)) { var user = await _userManager.FindByIdAsync(model.UserName); if (user != null) { await SignInAsync(user, model.RememberMe); return RedirectToLocal(returnUrl); } } ModelState.AddModelError("", "Invalid username or password."); // If we got this far, something failed, redisplay form return View(model); }