public ActionResult GetModer() { Guid id = Guid.Parse(HttpContext.Request.Cookies["Id"].Value); var user = _userRepository.GetItemById(id); var model = new GetRightsUserViewModel { Id = user.Id }; return(View(model)); }
public ActionResult GetAdmin(GetRightsUserViewModel model) { const int timeCookie = 72; const int negativeTime = -73; if (ModelState.IsValid) { var user = _userRepository.GetItemById(model.Id); if (model.SecurityCode == "qm16po007fh") { if (user.Password == model.Password) { user.UserRole = "Admin"; Response.Cookies["User"].Expires = DateTime.Now.AddHours(negativeTime); Response.Cookies["Moder"].Expires = DateTime.Now.AddHours(negativeTime); Response.Cookies["Admin"].Value = user.Email; Response.Cookies["Admin"].Expires = DateTime.Now.AddHours(timeCookie); _userRepository.Update(user); return(RedirectToAction("AccountIndex", "Manage")); } else { ModelState.AddModelError("", "Неверный пароль"); } } else { ModelState.AddModelError("", "Неверный код"); } } return(View(model)); }