public ActionResult ChangePassword(string oldpass,string newpass1,string newpass2)
{
if (Request.IsAuthenticated)
{
if(newpass1==newpass2)
{
PasswordMethods pass = new PasswordMethods();
UserData userData = UserData.GetUserData();
User user = new User();
user.username = User.Identity.Name;
user.password = pass.Hash(oldpass);
if (userData.LoginUser(user))
{
userData.ChangePassword(User.Identity.Name, pass.Hash(newpass1));
TempData["Message"] = "Şifreniz başarıyla değiştirildi";
return RedirectToAction("Index");
}
else
{
TempData["Message"] = "Eski şifrenizi yanlış girdiniz";
return RedirectToAction("Index");
}
}
else
{
TempData["Message"] = "Şifreler birbiriyle uyuşmuyor";
return RedirectToAction("Index");
}
}
else
{
TempData["Message"] = "Giriş yapmamışsınız";
return RedirectToAction("Index");
}
}
public ActionResult AddUser(string username, string password, string role)
{
RolesData rolesData = RolesData.GetRolesData();
if (Request.IsAuthenticated)
{
if(User.IsInRole("admin"))
{
UserData userData = UserData.GetUserData();
if (!userData.CheckIfExists(username))
{
User user = new Entities.User();
user.username = username;
PasswordMethods pass = new PasswordMethods();
user.password = pass.Hash(password);
userData.AddUser(user);
rolesData.AddUser(username, role);
TempData["Message"] = "Kullanıcı başarıyla eklendi";
return RedirectToAction("Index","Home");
}
else
{
TempData["Message"] = "Kullanıcı zaten var";
return RedirectToAction("Index","Home");
}
}
else
{
TempData["Message"] = "Yeterli yetkiniz yok";
return RedirectToAction("Index", "Home");
}
}
else
{
return RedirectToAction("Index", "Home");
}
}
public ActionResult EditUser(string oldname, string newname = "",string password = "", string role = "")
{
RolesData rolesData = RolesData.GetRolesData();
if (Request.IsAuthenticated)
{
if (User.IsInRole("admin"))
{
UserData userData = UserData.GetUserData();
PasswordMethods pass = new PasswordMethods();
if (password != "")
{
password = pass.Hash(password);
userData.ChangePassword(newname, password);
}
if (newname != "")
{
rolesData.ChangeUserName(oldname, newname);
userData.ChangeName(oldname, newname);
}
if (role != "")
{
if (newname != "")
{
rolesData.SetRole(newname, role);
}
else
{
rolesData.SetRole(oldname, role);
}
}
return View("Index");
}
else
{
TempData["Message"] = "Yeterli yetkiniz yok";
return RedirectToAction("Index", "Home");
}
}
else
{
return RedirectToAction("Index", "Home");
}
}
public ActionResult Login(string username, string remember, string password)
{
User user = new User();
user.username = username;
PasswordMethods pass = new PasswordMethods();
user.password = pass.Hash(password);
UserData userData = UserData.GetUserData();
if (Request.IsAuthenticated)
{
TempData["Message"] = "Zaten giriş yapmışsınız";
return RedirectToAction("Index");
}
else
{
if (userData.LoginUser(user))
{
if (remember == "on")
{
HttpCookie hc = new HttpCookie("username");
hc.Value = username;
Response.Cookies.Add(hc);
}
else if (remember == null)
{
if (Request.Cookies["username"] != null)
{
HttpCookie hc = new HttpCookie("username");
hc.Expires = DateTime.Now.AddDays(-1);
Response.Cookies.Add(hc);
}
}
RolesData rolesData = RolesData.GetRolesData();
string role = rolesData.GetRole(user.username);
System.Web.Security.FormsAuthenticationTicket ticket = new System.Web.Security.FormsAuthenticationTicket(
1,
user.username,
DateTime.Now,
DateTime.Now.AddMinutes(30),
false,
role,
System.Web.Security.FormsAuthentication.FormsCookiePath);
string EncryptedTicket = System.Web.Security.FormsAuthentication.Encrypt(ticket);
HttpCookie cookie = new HttpCookie(FormsAuthentication.FormsCookieName, EncryptedTicket);
cookie.HttpOnly = true;
Response.Cookies.Add(cookie);
//System.Web.Security.FormsAuthentication.SetAuthCookie(user.username, false);
TempData["Message"] = "Giriş başarılı";
return RedirectToAction("Index");
}
else
{
TempData["Message"] = "Yanlış kullanıcı adı veya şifre";
return RedirectToAction("Index");
}
}
}