public ActionResult AnswerQuestions(AnswerQuestionsModel model) { EventLogHandler Logger = new EventLogHandler(); ErrorController ErrorFinder = new ErrorController(); var sessionUser = Session["Username"] as string; var sessionEmail = Session["Email"] as string; List <CreateUser> user; using (IDbConnection db = new SqlConnection(SqlAccess.GetConnectionString())) { user = db.Query <CreateUser>("Select * from dbo.UserTable where Username = @Username AND Email = @Email;", new { Username = sessionUser, Email = sessionEmail }).ToList(); } ViewBag.Question_1 = user[0].SecurityQuestion1; ViewBag.Question_2 = user[0].SecurityQuestion2; //Database1Entities5 db = new Database1Entities5(); //var userDetails = db.CreateUsers.Where(validUser => validUser.Username == sessionUser && validUser.Email == sessionEmail).FirstOrDefault(); //ViewBag.Question_1 = userDetails.Security_Question1; //ViewBag.Question_2 = userDetails.Security_Question2; if (model.Answer_1 == user[0].Answer1 && model.Answer_2 == user[0].Answer2) { using (IDbConnection db = new SqlConnection(SqlAccess.GetConnectionString())) { string sql = $"Update dbo.UserTable set AccountLocked = @AccountLocked where Username = @Username;"; db.Execute(sql, new { AccountLocked = false, Username = user[0].Username }); } //user[0].Account_Locked = false; //db.SaveChanges(); Logger.LogAccountRecovered(user[0].ID, user[0].Username); //Database1Entities6 db2 = new Database1Entities6(); //var events = db2.EventLogs.ToList(); ViewBag.Message = "Account Unlocked Successfully."; } else { ViewBag.Error = ErrorFinder.GetErrorMessage(37); } //if (model.Answer_1 == userDetails.Answer_1 && model.Answer_2 == userDetails.Answer_2) { // userDetails.Account_Locked = false; // db.SaveChanges(); // Logger.LogAccountRecovered(userDetails.ID, userDetails.Username); // Database1Entities6 db2 = new Database1Entities6(); // var events = db2.EventLogs.ToList(); // ViewBag.Message = "Account Unlocked Successfully."; //} //else //{ // ViewBag.Error = ErrorFinder.GetErrorMessage(37); //} return(View()); }
public ActionResult AnswerQuestions() { var CustomView = new AnswerQuestionsModel(); var sessionUser = Session["Username"] as string; var sessionEmail = Session["Email"] as string; List <CreateUser> user; using (IDbConnection db = new SqlConnection(SqlAccess.GetConnectionString())) { user = db.Query <CreateUser>("Select * from dbo.UserTable where Username = @Username AND Email = @Email;", new { Username = sessionUser, Email = sessionEmail }).ToList(); } //Database1Entities5 db = new Database1Entities5(); //var userDetails = db.CreateUsers.Where(validUser => validUser.Username == sessionUser && validUser.Email == sessionEmail).FirstOrDefault(); ViewBag.Question_1 = user[0].SecurityQuestion1; ViewBag.Question_2 = user[0].SecurityQuestion2; return(View(CustomView)); }