public IActionResult LoginPage(LoginIDViewModel login) { var isLoggedIn = _httpContextAccessor.HttpContext.Session.GetInt32("isLoggedIn"); if (isLoggedIn == 1) { return(View("/Views/GameWindow/PlayerDetails.cshtml")); } else { return(View(login)); } }
public async Task <IActionResult> Login(LoginIDViewModel logDetails) { // Open SQL - DB connection await mySqlConnection.OpenAsync(); // setup connection using var cmd = new MySqlCommand(); cmd.Connection = mySqlConnection; // set variables for the login properties string password = logDetails.LoginPwd; string email = logDetails.LoginID; string mysqlEmail = ""; string mysqlPass = ""; // get SQL statement to be executed cmd.CommandText = "SELECT email, password FROM users WHERE email = @email AND password = @password"; cmd.Parameters.AddWithValue("@email", email); cmd.Parameters.AddWithValue("@password", password); var reader = await cmd.ExecuteReaderAsync(); while (reader.Read()) { mysqlEmail = reader.GetString("email"); mysqlPass = reader.GetString("password"); } if (mysqlEmail == email && mysqlPass == password) { _httpContextAccessor.HttpContext.Session.SetString("_email", email); _httpContextAccessor.HttpContext.Session.SetInt32("isLoggedIn", 1); return(View("/Views/GameWindow/PlayerDetails.cshtml")); } else { return(View("LoginPage")); } }