public ActionResult Create(CreateNewUser newUser)
{
try
{
if (ModelState.IsValid)
{
if (CheckValidateEmail(newUser.user.Email))
{
if (!ViewModels.CheckForUser(newUser.user.Email))
{
if (CheckComplexity(newUser.user.Password))
{
newUser.user.Password = Encrypter.ComputeHash(newUser.user.Password, null);
Users myUser = new Users();
myUser.Email = newUser.user.Email;
myUser.Password = newUser.user.Password;
ViewModels.CreateUser(myUser);
}
else
{
newUser.passwordError = true;
newUser.emailError = false;
newUser.blankFieldError = false;
newUser.user.Email = null;
newUser.user.Password = null;
return(View(newUser));
}
}
else
{
newUser.emailError = true;
newUser.passwordError = false;
newUser.blankFieldError = false;
newUser.user.Email = null;
newUser.user.Password = null;
return(View(newUser));
}
}
else
{
newUser.emailError = true;
newUser.passwordError = false;
newUser.blankFieldError = false;
newUser.user.Email = null;
newUser.user.Password = null;
return(View(newUser));
}
}
return(RedirectToAction("Delete"));
}
catch (Exception e)
{
DataLink.LogError(e);
throw;
}
}
public ActionResult Login(Login login)
{
try
{
if (ModelState.IsValid)
{
//A user has been returned. Pull out the email that is specified. Has the user's password and compare it to the hash in the database.
if (login.user.Email != null && login.user.Password != null)
{
if (ViewModels.CheckForUser(login.user.Email))
{
//Get the information for the user they are trying to login as
Users u = ViewModels.GetUser(login.user.Email);
//Check to the entered password against the saved password
if (Encrypter.VerifyHash(login.user.Password, u.Password))
{
if (FormsAuthentication.FormsCookieName != null)
{
FormsAuthentication.SignOut();
}
//TODO: Figure out how to set the validation for a user
FormsAuthentication.SetAuthCookie(login.user.Email, false);
return(RedirectToAction("ReportHome"));
}
else
{
//It failed so return the view with the user input
login.Error = true;
login.user.Password = null;
return(View(login));
}
}
else
{
login.Error = true;
login.user.Email = null;
login.user.Password = null;
return(View(login));
}
}
}
login.Error = true;
login.user.Email = null;
login.user.Password = null;
return(View(login));
}
catch (Exception e)
{
DataLink.LogError(e);
throw;
}
}
