public ActionResult Login(LoginViewModel model, string returnUrl) { if (!ModelState.IsValid) { return View(model); } // insecure auth if (!model.Username.Equals(model.Password, StringComparison.InvariantCultureIgnoreCase) || Accounts.List.All(x => x.Username != model.Username)) { ModelState.AddModelError("Password", "Invalid username or password."); return View(model); } Response.Cookies.Add(new HttpCookie("Auth", model.Username)); return RedirectToLocal(returnUrl); }
public ActionResult Login(string returnUrl) { ViewBag.ReturnUrl = returnUrl; var model = new LoginViewModel(); return View(model); }