Exemplo n.º 1
0
        public ActionResult ChangePassword(string oldPassword, string newPassword, string repeatPassword)
        {
            string password = null;
            User tmp = SqlUser.GetUser(User.Identity.Name);
            password = SqlUser.GetUserPassword(tmp);

            if (Crypto.Hash(oldPassword) != password)
            {
                ViewBag.Message = "Stare hasło nie jest prawidłowe! ";
                return View();
            }
            else if(newPassword != repeatPassword)
            {
                ViewBag.Message = "Hasła nie są takie same! ";
                return View();

            }
            else if (newPassword == repeatPassword)
            {
                
                bool status = SqlUser.ChangePassword(Crypto.Hash(oldPassword), Crypto.Hash(newPassword), tmp.Email);
                return RedirectToAction("Logout");
            }
            else
            {
                ViewBag.Message = "Nie wiem jak to zrobiłeś/aś ale no nie pykło ";
                return View();
            }
           

        }
Exemplo n.º 2
0
        public ActionResult Login(UserLogin login, string ReturnUrl = "")
        {
            bool Status = false;
            string message = "";
            if (SqlUser.CheckUserExists(login.Email))
            {
                if (!SqlUser.CheckEmailVeryfied(login))
                {
                    ViewBag.Message = Resources.Texts.VerifyYourEmail;
                    return View();
                }
                if (string.Compare(Crypto.Hash(login.Password), SqlUser.GetUserPassword(login)) == 0)
                {
                    int timeout = login.RememberMe ? 525600 : 30; // 525600 min = 1 rok, 30 dni czas zycia cookiem
                    var ticket = new FormsAuthenticationTicket(login.Email, login.RememberMe, timeout);
                    string encrypted = FormsAuthentication.Encrypt(ticket);
                    var cookie = new HttpCookie(FormsAuthentication.FormsCookieName, encrypted)
                    {
                        Expires = DateTime.Now.AddMinutes(timeout),
                        HttpOnly = true
                    };
                    Response.Cookies.Add(cookie);
                    Status = true;

                    if (Url.IsLocalUrl(ReturnUrl))
                    {
                        return Redirect(ReturnUrl);
                    }
                    else
                    {
                        switch (SqlUser.GetUserRole(login.Email))
                        {
                            case "administrator":
                            return RedirectToAction("Index", "Admin");
                            //case "worker":
                            //return RedirectToAction("Profile", "User");
                            case "user":
                                return RedirectToAction("Profile", "User");
                        }
                    }
                }
                else
                {
                    message = Resources.Texts.InvalidPassword;
                }
            }
            else
            {
                message = Resources.Texts.InvalidUser;
            }

            ViewBag.Message = message;
            ViewBag.Status = Status;
            return View();
        }