public ActionResult Index(FormCollection frm) { ViewBag.Message = ""; ViewBag.SuccessMessage = ""; string userid = frm["Email"]; string password = frm["Password"]; var CheckEmail = db.GetSaltValue(userid); //Retrive Salt Value From Database Table string passwordSalt = CheckEmail.PasswordSalt; string passwordHash = CryptoService.GenerateSHA256Hash(password, passwordSalt); // Generating Hash Value using userpassword and above salt value var matchIdPassword = db.matchIdPassword(userid, passwordHash); if (matchIdPassword == null) { Session["ViewBagMessage"] = "Something is Wrong!!!"; ViewBag.Message = "Something is Wrong!!!"; return(RedirectToAction("Index", "Login")); } else { Session["UserId"] = matchIdPassword.UserId; Session["FullName"] = matchIdPassword.FullName; Session["UserType"] = matchIdPassword.UserType; Session["UserTypeTxt"] = db.getUserTypeName(matchIdPassword.UserType).UserTypeName; Session["DepartmentId"] = matchIdPassword.DepartmentId; return(RedirectToAction("Index", "Dashboard")); } }
public JsonResult CheckPassword(string OldPassword) { JsonResult result = new JsonResult(); int userId = Convert.ToInt32(Session["UserId"]); Sys_User detail = up.getUesrDetailByUserId(userId); string dbOldPassword = detail.Password; string dbpasswordSalt = detail.PasswordSalt; string OldpasswordHash = CryptoService.GenerateSHA256Hash(OldPassword, dbpasswordSalt); //var checkOldPass = up.CheckOldPassword(OldpasswordHash); var matching = ddl.CheckPassword(OldpasswordHash, userId); if (matching != null) { result.Data = ""; return(result); } else { result.Data = "Incorrect Password!!!"; return(result); } }
public ActionResult Create(FormCollection frm) { Sys_User saveUser = new Sys_User(); saveUser.FullName = frm["FullName"]; saveUser.Email = frm["Email"]; string password = frm["Password"]; saveUser.DepartmentId = Convert.ToInt32(frm["DepartmentId"]); saveUser.UserType = Convert.ToInt32(frm["UserTypeId"]); string passwordSalt = CryptoService.CreateSalt(10); string passwordHash = CryptoService.GenerateSHA256Hash(password, passwordSalt); saveUser.PasswordSalt = Convert.ToString(passwordSalt); saveUser.Password = Convert.ToString(passwordHash); if (frm["IsActive"] == "Y") { saveUser.IsActive = true; } else { saveUser.IsActive = false; } saveUser.EnteredDate = DateTime.Now; saveUser.EnteredBy = Convert.ToInt32(Session["UserId"]); db.AddUsers(saveUser); return(RedirectToAction("Index")); }
public ActionResult ChangePassword(FormCollection frm) { Sys_User changeUserPass = new Sys_User(); int userId = Convert.ToInt32(Session["UserId"]); Sys_User detail = db.getUesrDetailByUserId(userId); string dbOldPassword = detail.Password; string dbpasswordSalt = detail.PasswordSalt; string OldpasswordHash = CryptoService.GenerateSHA256Hash(frm["OldPassword"], dbpasswordSalt); var checkOldPass = db.CheckOldPassword(OldpasswordHash); if (frm["NewPassword"] == frm["RePassword"]) { if (dbOldPassword == OldpasswordHash && checkOldPass != null) { string password = frm["NewPassword"]; string passwordSalt = CryptoService.CreateSalt(10); string passwordHash = CryptoService.GenerateSHA256Hash(password, passwordSalt); changeUserPass.PasswordSalt = Convert.ToString(passwordSalt); changeUserPass.Password = Convert.ToString(passwordHash); changeUserPass.LastUpdatedBy = userId; changeUserPass.LastUpdatedDate = DateTime.Now; db.ChangePassword(changeUserPass, userId); ViewBag.Message = "Password Changed"; } } else { ViewBag.Message = "Password MissMatch!!!"; } return(View()); }
public ActionResult Login(Service service) { if (ModelState.IsValid) { var manager = new DataManager(); if (manager.IsValidLogin(service.Login, PasswordHash.GenerateSHA256Hash(service.Password))) { FormsAuthentication.SetAuthCookie(service.Login, true); return(RedirectToAction("Index", "Chat")); } else { ModelState.AddModelError("", "Login data is incorrect!"); } } return(View(service)); }
public override void Up() { CreateTable( "dbo.Answers", c => new { Id = c.Int(nullable: false, identity: true), Text = c.String(), AnswerTime = c.DateTime(nullable: false), ServiceId = c.Int(nullable: false), }) .PrimaryKey(t => t.Id) .ForeignKey("dbo.Services", t => t.ServiceId, cascadeDelete: true) .Index(t => t.ServiceId); CreateTable( "dbo.Services", c => new { Id = c.Int(nullable: false, identity: true), Login = c.String(), Password = c.String(), }) .PrimaryKey(t => t.Id); CreateTable( "dbo.Questions", c => new { Id = c.Int(nullable: false, identity: true), Text = c.String(), CreateTime = c.DateTime(nullable: false), SessionId = c.String(), AnswerId = c.Int(), }) .PrimaryKey(t => t.Id) .ForeignKey("dbo.Answers", t => t.AnswerId) .Index(t => t.AnswerId); var adminPwdHash = PasswordHash.GenerateSHA256Hash("admin"); Sql("insert into Services (Login, Password) values ('admin', '" + adminPwdHash + "')"); }