public ActionResult Login(LoginCredentialModel loginCredentials) { AuthenticateProcess authenticate = new AuthenticateProcess(); if (ModelState.IsValid) { var loginStatus = authenticate.ValidateLogin(loginCredentials.Username, loginCredentials.Password); if (loginStatus == LoginStatus.Successful) { // set the forms auth cookie FormsAuthentication.SetAuthCookie(loginCredentials.Username.ToString(), false); // reset request.isauthenticated var authCookie = System.Web.HttpContext.Current.Request.Cookies[FormsAuthentication.FormsCookieName]; if (authCookie != null) { FormsAuthenticationTicket authTicket = FormsAuthentication.Decrypt(authCookie.Value); if (authTicket != null && !authTicket.Expired) { var roles = authTicket.UserData.Split(','); System.Web.HttpContext.Current.User = new System.Security.Principal.GenericPrincipal(new FormsIdentity(authTicket), roles); } } return(RedirectToAction("MyAssets", "Employee")); } else { ModelState.AddModelError("", "Wrong Employee Employee ID or Password"); } } return(View()); }
public ActionResult ChangePassword(ChangePasswordModel changePasswordModel) { FASTService.Process.AuthenticateProcess authProcess = new AuthenticateProcess(); var client = new RestClient("http://localhost:8090/api/User/ChangePassword"); var request = new RestRequest(); string body = String.Format("{{'EmployeeID':{0},'HashedOldPassword':'******','HashedNewPassword':'******'}}", changePasswordModel.Username.ToString(), authProcess.HashString(changePasswordModel.OldPassword), authProcess.HashString(changePasswordModel.NewPassword)); request.Method = Method.PUT; request.AddHeader("Accept", "application/json"); request.Parameters.Clear(); request.AddParameter("application/json", body, ParameterType.RequestBody); var response = client.Execute(request); var content = response.Content; TempData["Result"] = content.Replace('"', ' ').Trim(); TempData["Source"] = "Change Password"; return(View("~/Views/Shared/Result.cshtml")); }