protected void lbtnLogin_Click(object sender, EventArgs e)
{
AppUser u = new AppUser();
//validation check for null or empty txtboxes for username && password
if (!string.IsNullOrEmpty(txtUserName.Text.Trim()) && !string.IsNullOrEmpty(txtPassword.Text.Trim()))
{
u = new AppUser(txtUserName.Text.Trim());
string hash = AppUser.CreatePasswordHash(u.Salt, txtPassword.Text.Trim());
if (hash == u.HashedPassword)
{
u.ValidLogin = true;
}
else
{
lblResult.Text = "Login Failed, please enter a valid email address and password";
}
}
if (u.ValidLogin == true)
{
lblResult.Text = "Login Success";
//creation of authenication ticket
FormsAuthenticationTicket ticket = new FormsAuthenticationTicket(
1, u.UserId.ToString(), DateTime.Now, DateTime.Now.AddMinutes(480), false, "Admin");
string ticketEncrypt = FormsAuthentication.Encrypt(ticket);
//creating a cookie to communicate with the response object
HttpCookie c = new HttpCookie(
FormsAuthentication.FormsCookieName, ticketEncrypt);
//add cookie to response
Response.Cookies.Add(c);
//check the ticket
Session["FullName"] = string.Concat(
u.LastName,
", ", u.FistName);
// Redirect browser back to home page
Response.Redirect("~/home");
}
//
else
{
lblResult.CssClass = "col-lg-2 text-danger";
lblResult.Text = "Incorrect username or password please try again";
}
}
