public ActionResult Index(FormCollection frm)
{
ViewBag.Message = "";
ViewBag.SuccessMessage = "";
string userid = frm["Email"];
string password = frm["Password"];
var CheckEmail = db.GetSaltValue(userid); //Retrive Salt Value From Database Table
string passwordSalt = CheckEmail.PasswordSalt;
string passwordHash = CryptoService.GenerateSHA256Hash(password, passwordSalt); // Generating Hash Value using userpassword and above salt value
var matchIdPassword = db.matchIdPassword(userid, passwordHash);
if (matchIdPassword == null)
{
Session["ViewBagMessage"] = "Something is Wrong!!!";
ViewBag.Message = "Something is Wrong!!!";
return(RedirectToAction("Index", "Login"));
}
else
{
Session["UserId"] = matchIdPassword.UserId;
Session["FullName"] = matchIdPassword.FullName;
Session["UserType"] = matchIdPassword.UserType;
Session["UserTypeTxt"] = db.getUserTypeName(matchIdPassword.UserType).UserTypeName;
Session["DepartmentId"] = matchIdPassword.DepartmentId;
return(RedirectToAction("Index", "Dashboard"));
}
}
public JsonResult CheckPassword(string OldPassword)
{
JsonResult result = new JsonResult();
int userId = Convert.ToInt32(Session["UserId"]);
Sys_User detail = up.getUesrDetailByUserId(userId);
string dbOldPassword = detail.Password;
string dbpasswordSalt = detail.PasswordSalt;
string OldpasswordHash = CryptoService.GenerateSHA256Hash(OldPassword, dbpasswordSalt);
//var checkOldPass = up.CheckOldPassword(OldpasswordHash);
var matching = ddl.CheckPassword(OldpasswordHash, userId);
if (matching != null)
{
result.Data = "";
return(result);
}
else
{
result.Data = "Incorrect Password!!!";
return(result);
}
}
public ActionResult Create(FormCollection frm)
{
Sys_User saveUser = new Sys_User();
saveUser.FullName = frm["FullName"];
saveUser.Email = frm["Email"];
string password = frm["Password"];
saveUser.DepartmentId = Convert.ToInt32(frm["DepartmentId"]);
saveUser.UserType = Convert.ToInt32(frm["UserTypeId"]);
string passwordSalt = CryptoService.CreateSalt(10);
string passwordHash = CryptoService.GenerateSHA256Hash(password, passwordSalt);
saveUser.PasswordSalt = Convert.ToString(passwordSalt);
saveUser.Password = Convert.ToString(passwordHash);
if (frm["IsActive"] == "Y")
{
saveUser.IsActive = true;
}
else
{
saveUser.IsActive = false;
}
saveUser.EnteredDate = DateTime.Now;
saveUser.EnteredBy = Convert.ToInt32(Session["UserId"]);
db.AddUsers(saveUser);
return(RedirectToAction("Index"));
}
public ActionResult ChangePassword(FormCollection frm)
{
Sys_User changeUserPass = new Sys_User();
int userId = Convert.ToInt32(Session["UserId"]);
Sys_User detail = db.getUesrDetailByUserId(userId);
string dbOldPassword = detail.Password;
string dbpasswordSalt = detail.PasswordSalt;
string OldpasswordHash = CryptoService.GenerateSHA256Hash(frm["OldPassword"], dbpasswordSalt);
var checkOldPass = db.CheckOldPassword(OldpasswordHash);
if (frm["NewPassword"] == frm["RePassword"])
{
if (dbOldPassword == OldpasswordHash && checkOldPass != null)
{
string password = frm["NewPassword"];
string passwordSalt = CryptoService.CreateSalt(10);
string passwordHash = CryptoService.GenerateSHA256Hash(password, passwordSalt);
changeUserPass.PasswordSalt = Convert.ToString(passwordSalt);
changeUserPass.Password = Convert.ToString(passwordHash);
changeUserPass.LastUpdatedBy = userId;
changeUserPass.LastUpdatedDate = DateTime.Now;
db.ChangePassword(changeUserPass, userId);
ViewBag.Message = "Password Changed";
}
}
else
{
ViewBag.Message = "Password MissMatch!!!";
}
return(View());
}
public ActionResult Login(Service service)
{
if (ModelState.IsValid)
{
var manager = new DataManager();
if (manager.IsValidLogin(service.Login, PasswordHash.GenerateSHA256Hash(service.Password)))
{
FormsAuthentication.SetAuthCookie(service.Login, true);
return(RedirectToAction("Index", "Chat"));
}
else
{
ModelState.AddModelError("", "Login data is incorrect!");
}
}
return(View(service));
}
public override void Up()
{
CreateTable(
"dbo.Answers",
c => new
{
Id = c.Int(nullable: false, identity: true),
Text = c.String(),
AnswerTime = c.DateTime(nullable: false),
ServiceId = c.Int(nullable: false),
})
.PrimaryKey(t => t.Id)
.ForeignKey("dbo.Services", t => t.ServiceId, cascadeDelete: true)
.Index(t => t.ServiceId);
CreateTable(
"dbo.Services",
c => new
{
Id = c.Int(nullable: false, identity: true),
Login = c.String(),
Password = c.String(),
})
.PrimaryKey(t => t.Id);
CreateTable(
"dbo.Questions",
c => new
{
Id = c.Int(nullable: false, identity: true),
Text = c.String(),
CreateTime = c.DateTime(nullable: false),
SessionId = c.String(),
AnswerId = c.Int(),
})
.PrimaryKey(t => t.Id)
.ForeignKey("dbo.Answers", t => t.AnswerId)
.Index(t => t.AnswerId);
var adminPwdHash = PasswordHash.GenerateSHA256Hash("admin");
Sql("insert into Services (Login, Password) values ('admin', '" + adminPwdHash + "')");
}
