/// <summary> /// Changes the user's password /// </summary> /// <param name="context">Http Context includes request, response, etc.</param> /// <param name="oldClearPassword">The old password in clear text</param> /// <param name="newClearPassword">The new password in clear text</param> /// <exception cref="IncorrectPasswordException"/> public static void ChangePassword(HttpContext context, String oldClearPassword, String newClearPassword) { UserSession userSession = (UserSession)context.Session[USER_SESSION_ATTRIBUTE]; userService.ChangePassword(userSession.UserProfileId, oldClearPassword, newClearPassword); /* Remove cookies */ CookiesManager.RemoveLoginCookie(context); }
/// <summary> /// Destroys the session, and removes the cookies if the user had /// selected "remember my password". /// </summary> /// <param name="context">Http Context includes request, response, etc.</param> public static void Logout(HttpContext context) { /* Remove cookies */ CookiesManager.RemoveLoginCookie(context); /* Invalidate session */ context.Session.Abandon(); /* Invalidate Authentication Ticket */ FormsAuthentication.SignOut(); }