public ViewResult Login(regdb login) { if (ModelState.IsValid) // Check the model state for any validation errors { if (login.checkUser(login.Username, login.Password)) // Calls the Login class checkUser() for existence of the user in the database. { return(View("AfterLogin", login)); // Return the "Show.cshtml" view if user is valid } else { ViewBag.Message = "Invalid Username or Password"; return(View()); //return the same view with message "Invalid Username or Password" } } else { return(View()); // Return the same view with validation errors. } }
public ActionResult SignUp(regdb reg) { string constr = ConfigurationManager.ConnectionStrings["FinalWebEntities"].ConnectionString; using (SqlConnection con = new SqlConnection(constr)) { string query = "INSERT INTO regdb(Fullname, Email, Username, Password, Usertype) VALUES(@Fullname, @Email, @Username, @Password, @Usertype)"; query += " SELECT SCOPE_IDENTITY()"; using (SqlCommand cmd = new SqlCommand(query)) { cmd.Connection = con; con.Open(); cmd.Parameters.AddWithValue("@Fullname", reg.Fullname); cmd.Parameters.AddWithValue("@Email", reg.Email); cmd.Parameters.AddWithValue("@Username", reg.Username); cmd.Parameters.AddWithValue("@Password", reg.Password); cmd.Parameters.AddWithValue("@Usertype", reg.Usertype); reg.UserID = Convert.ToInt32(cmd.ExecuteScalar()); con.Close(); } } if (reg.Usertype == "Admin") { return(RedirectToAction("Admin", "Home")); } else if (reg.Usertype == "Buyer") { return(RedirectToAction("Categories", "Home")); } else if (reg.Usertype == "Seller") { return(RedirectToAction("Categories", "Home")); } else if (reg.Usertype == "Professional") { return(RedirectToAction("BlankPage", "Home")); } return(View(reg)); }