// uses helper classes to check if user exist in database // redirects if user exist to home page or displays erro message protected void btnLogin_Click(object sender, EventArgs e) { var username = txtUsername.Text; var hashedPassword = PasswordHelper.GetHashedPassword(txtPassword.Text); var userAccount = MovieWikiDbHelper.GetUserAccount(username, hashedPassword); if (userAccount != null) { Session[Global.ActiveUserAccount] = userAccount; Response.Redirect("Default.aspx"); } else { lblErrorMsg.Text = string.Format(@"Incorrect password for user ""{0}.""", username); } }
// makes sure user does not exist before adding them to UserAccount class and within database protected void btnCreateAccount_Click(object sender, EventArgs e) { if (!Page.IsValid) { return; } var username = txtCreateUsername.Text; var hashedPassword = PasswordHelper.GetHashedPassword(txtCreatePassword.Text); if (MovieWikiDbHelper.InsertUserAccount(username, hashedPassword)) { Session[Global.ActiveUserAccount] = MovieWikiDbHelper.GetUserAccount(username, hashedPassword); Response.Redirect("Default.aspx"); } else { lblCreateAccountErrorMsg.Text = string.Format(@"The account ""{0}"" already exists", username); } }