private void Verify(int?businessId) { string userCookie = Request.Cookies["User"] != null ? Request.Cookies["User"].Value : string.Empty; var userCredentials = new UserSession { UserName = Request["username"], Password = Request["password"], IpAddress = Request.UserHostAddress, XForwardedFor = Request.Headers["X-Forwarded-For"], Browser = HttpContext.Current.Request.Browser.Browser, ServerName = Request.ServerVariables["SERVER_NAME"], DateCreated = DateTime.Now, UserKey = userCookie }; var authentication = new UserAuthenticationManagement(); UserSession userValidationResults = new UserSession(); if (userCredentials.UserName != null) { userValidationResults = authentication.AuthenticUserCredentials(userCredentials); } else if (userCookie != string.Empty) { userValidationResults = authentication.AuthenticateUserByCookie(userCredentials); } if (userValidationResults.SessionValidated) { Response.Cookies["SessionInfo"].Value = userValidationResults.SessionKey; Response.Cookies["SessionInfo"].Expires = DateTime.Now.AddHours(3); Response.Cookies["User"].Value = userValidationResults.UserKey; if (userValidationResults.UserGroup == 1 && businessId != null) { Response.Redirect("/Clients/JoinQueue.aspx?profile=" + Convert.ToString(businessId)); } else if (userValidationResults.UserGroup == 1 && businessId == null) { Response.Redirect("/Clients/PatronDashboard.aspx"); } else if (userValidationResults.UserGroup == 2) { Response.Redirect("/Manager/Dashboard.aspx"); } else if (userValidationResults.UserGroup == 3) { Response.Redirect("/Admins/AdminDashboard.aspx"); } } else if (Request.QueryString["profile"] != string.Empty) { profileHiddenField.Value = Request.QueryString["profile"]; } }
protected void signUpSubmit_Click(object sender, EventArgs e) { var patronFirstName = firstName.Value; var patronLastName = lastName.Value; var patronEmail = email.Value; var patronPhoneNumber = mobileNumber.Value; var patronPassword = password.Value; // Validate form // create account if validation successful var accountHandler = new AccountManagementService(); accountHandler.CreateNewUser(new UserSetUp { FirstName = patronFirstName, LastName = patronLastName, Email = patronEmail, PhoneNumber = patronPhoneNumber, Password = patronPassword, UserType = PatronUserGroup }); // user key has been created var userCredentials = new UserSession { UserName = patronEmail, Password = patronPassword, IpAddress = Request.UserHostAddress, XForwardedFor = Request.Headers["X-Forwarded-For"], Browser = HttpContext.Current.Request.Browser.Browser, ServerName = Request.ServerVariables["SERVER_NAME"], DateCreated = DateTime.Now, UserKey = String.Empty }; var authenticationHandler = new UserAuthenticationManagement(); UserSession userValidationResults = new UserSession(); userValidationResults = authenticationHandler.LogSessionForNewUserAfterSignUp(userCredentials); if (userValidationResults.SessionValidated) { Response.Cookies["SessionInfo"].Value = userValidationResults.SessionKey; Response.Cookies["SessionInfo"].Expires = DateTime.Now.AddHours(3); Response.Cookies["User"].Value = userValidationResults.UserKey; if (userValidationResults.UserGroup == PatronUserGroup) { Response.Redirect("/Clients/JoinQueue.aspx?profile=1"); } } }