public ActionResult UpdatePassword(UpdatePasswordModel model) { var service = new CustomerService(); var passwordSaltService = new PasswordSaltService(); var cookie = Request.Cookies[FormsAuthentication.FormsCookieName]; if (cookie == null) { return(RedirectToAction("Login", "Login")); } var ticket = FormsAuthentication.Decrypt(cookie.Value); var customer = service.FindByCustomerAccount(ticket.Name); try { if (!passwordSaltService.Validate(model.Password)) { ViewBag.Msg = "密碼不符合規範"; return(View()); } if (model.Password != model.Password2) { ViewBag.Msg = "密碼與確認密碼不符"; return(View()); } var model2 = new Customer() { CustomerID = customer.CustomerID, Password = model.Password }; service.UpdatePassword(model2); return(RedirectToAction("SearchMember", "Member")); } catch { ViewBag.Msg = "不可為空白"; return(View()); } }