public ActionResult ChangePassword(ChangePasswordModel model) { //have to add code to replace password still //use old passsword handler EventLogHandler Logger = new EventLogHandler(); List <CreateUser> user; using (IDbConnection db = new SqlConnection(SqlAccess.GetConnectionString())) { var sessionUser = Session["Username"] as string; user = db.Query <CreateUser>("Select * from dbo.UserTable where Username = @Username;", new { Username = sessionUser }).ToList(); } if (user.Count() > 0) { OldPasswordHandler PassHand = new OldPasswordHandler(); PassHand.AdjustOldPasswords(model.CurrentPassword, user[0].ID); using (IDbConnection db = new SqlConnection(SqlAccess.GetConnectionString())) { string sql = $"Update dbo.UserTable set Password = @Password where Username = @Username;"; db.Execute(sql, new { Password = user[0].Password, Username = user[0].Username }); } Logger.LogPasswordChange(); var message = "Password updated successfully."; ViewBag.Message = message; } // using (Database1Entities5 dc = new Database1Entities5()) //{ // EventLogHandler Logger = new EventLogHandler(); // var sessionUser = Session["Username"] as string; // var user = dc.CreateUsers.Where(a => a.Username == sessionUser).FirstOrDefault(); // if (user != null) // { // OldPasswordHandler PassHand = new OldPasswordHandler(); // PassHand.AdjustOldPasswords(model.CurrentPassword, user.ID); // user.Password = model.NewPassword; // dc.SaveChanges(); // Logger.LogPasswordChange(); // Database1Entities6 db2 = new Database1Entities6(); // var events = db2.EventLogs.ToList(); // var message = "Password updated successfully."; // ViewBag.Message = message; // } //} return(View(model)); }