public ActionResult Register(UserRegisterModel user)
{
if (ModelState.IsValid)
{
using (var db = new FBLEntities())
{
if (db.SystemUsers.Any(x => string.Equals(user.UserName, x.Username)))
{
ModelState.AddModelError("Username", "Username already exist.");
return(View());
}
var salt = Utilities.SaltGenerate(32);
var us = db.SystemUsers.Add(new SystemUser()
{
Username = user.UserName, Password = (user.Password + salt).ToSHA(), Salt = salt
});
db.SaveChanges();
if (us == null)
{
ModelState.AddModelError("Server", "Something was wrong!");
//user.ErrorMessage = "Something was wrong!";
return(View(user));
}
Session[Common.UserSession] = $"{us.Id}_{us.Username}";
return(RedirectToAction("Index", "Home"));
}
}
return(View());
}
public ActionResult Login(User user)
{
using (var db = new FBLEntities())
{
var rs = db.SystemUsers.AsEnumerable().FirstOrDefault(x => string.Equals(x.Username, user.UserName.Trim()) && string.Equals(x.Password, (user.Password + x.Salt).ToSHA()));
if (rs != null)
{
Session[Common.UserSession] = $"{rs.Id}_{rs.Username}";
return(RedirectToAction("Index", "Home"));
}
return(RedirectToAction("Index", "Login"));
}
}
public ActionResult ChangePassword(UserChangePasswordModel user)
{
var ss = Session[Common.UserSession];
if (ss != null)
{
try
{
var uid = Int32.Parse(ss.ToString().Split('_')[0]);
using (var db = new FBLEntities())
{
var us = db.SystemUsers.FirstOrDefault(x =>
x.Id == uid);
if (us != null)
{
var isMatch = us.Password.Equals((user.OldPassword + us.Salt).ToSHA());
if (!isMatch)
{
ModelState.AddModelError("OldPassword", "Old password does not match.");
return(View());
}
if (ModelState.IsValid)
{
us.Password = (user.Password + us.Salt).ToSHA();
db.SaveChanges();
Extension.Notifications.AddNotification(this, "Your password has changed!", NotificationType.SUCCESS);
return(RedirectToAction("Index", "Home"));
}
}
}
}
catch (Exception e)
{
Console.WriteLine(e);
throw;
}
}
return(View());
}
