public ActionResult Login(string ReturnUrl)
{
EnsureLoggedOut();
UsersLoginViewModel Users = new UsersLoginViewModel();
Users.ReturnUrl = ReturnUrl;
return(View(Users));
}
public ActionResult Register(UsersLoginViewModel Users)
{
foreach (var us in Userservice.Get())
{
if (us.Name == Users.Name)
{
ViewBag.RegisterUsers = "User name exists already";
return(View(Users));
}
}
Userservice.Save(Users as UsersViewModel);
return(RedirectToAction("Login"));
}
//[ValidateAntiForgeryToken]
public ActionResult Login(UsersLoginViewModel Users)
{
foreach (var item in Userservice.Get())
{
if (item.Name == Users.Name && item.Password == Users.Password)
{
Session["CurrentUsers"] = item;
Userservice.UserId = item.Id;
SignInRemember(Users.Name, true);
return(RedirectToLocal(Users.ReturnUrl));
}
}
ViewBag.Login = "******";
return(View());
}
public ActionResult Autherize(UsersLoginViewModel userModel)
{
string mycmd = "select * from UserData";
dt = new DataTable();
dt = connectionData.GetAll(mycmd);
List <UsersLoginViewModel> list = new List <UsersLoginViewModel>();
for (int i = 0; i < dt.Rows.Count; i++)
{
UsersLoginViewModel users = new UsersLoginViewModel
{
UserID = Convert.ToInt32(dt.Rows[i]["IdUser"]),
UserName = dt.Rows[i]["UserName"].ToString(),
Password = dt.Rows[i]["Password"].ToString(),
Mail = dt.Rows[i]["Mail"].ToString(),
NameClient = dt.Rows[i]["NameClient"].ToString(),
};
list.Add(users);
}
var userDetails = list.Where(x => x.UserName == userModel.UserName && x.Password == Encrypt(userModel.Password)).FirstOrDefault();
if (userDetails == null)
{
userModel.LoginErrorMessage = "Wrong username or password.";
return(View("LoginRegister", userModel));
}
else
{
Session["userID"] = userDetails.UserID;
Session["userName"] = userDetails.UserName;
Session["mail"] = userDetails.Mail;
Session["nameClient"] = userDetails.NameClient;
return(RedirectToAction("LoginActive", "Login"));
}
}
public ActionResult Register(UsersLoginViewModel client)
{
string constr = ConfigurationManager.ConnectionStrings["ProductsModel"].ConnectionString;
using (SqlConnection con = new SqlConnection(constr))
{
string query = "INSERT INTO dbo.UserData(UserName, Password, Mail, NameClient) VALUES(@UserName, @Password, @Mail, @NameClient)";
query += " SELECT SCOPE_IDENTITY()";
using (SqlCommand cmd = new SqlCommand(query))
{
cmd.Connection = con;
con.Open();
cmd.Parameters.AddWithValue("@UserName", client.UserName);
cmd.Parameters.AddWithValue("@Password", client.Password = Encrypt(client.Password));
cmd.Parameters.AddWithValue("@Mail", client.Mail);
cmd.Parameters.AddWithValue("@NameClient", client.NameClient);
client.UserID = Convert.ToInt32(cmd.ExecuteScalar());
con.Close();
}
}
return(RedirectToAction("LoginRegister", "Login"));;
}
