public IActionResult Login(string username, string password) // Lab06.Models.Account account (đối tượng)
{
try
{
tbAdmin account = context.tbAdmin.SingleOrDefault(a => a.UserName.Equals(username)); // biểu thức lamda bên trong SingleOrDefault()
if (account != null)
{
if (account.Password.Equals(password))
{
// tao session
HttpContext.Session.SetString("user", username);
return(RedirectToAction("Admin", "tbNews"));
}
else
{
ViewBag.Msg = "Invalid password";
}
}
else
{
ViewBag.Msg = "Account not found ...";
}
}
catch (Exception ex)
{
ViewBag.Msg = ex.Message;
}
return(View());
}
public ActionResult DeleteConfirmed(int id)
{
tbAdmin tbAdmin = db.tbAdmins.Find(id);
db.tbAdmins.Remove(tbAdmin);
db.SaveChanges();
return(RedirectToAction("Index"));
}
public ActionResult DeleteConfirmed(int id)
{
tbAdmin tbadmin = db.tbAdmin.Find(id);
tbadmin.Is_Delete = true;
db.Entry(tbadmin).State = EntityState.Modified;
db.SaveChanges();
return(RedirectToAction("Index"));
}
public ActionResult Edit([Bind(Include = "MaAdmin,TaiKhoanAdmin,MatKhauAdmin")] tbAdmin tbAdmin)
{
if (ModelState.IsValid)
{
db.Entry(tbAdmin).State = EntityState.Modified;
db.SaveChanges();
return(RedirectToAction("Index"));
}
return(View(tbAdmin));
}
//
// GET: /Admin/Details/5
public ActionResult Details(int id = 0)
{
tbAdmin tbadmin = db.tbAdmin.Find(id);
if (tbadmin == null)
{
return(HttpNotFound());
}
return(View(tbadmin));
}
public ActionResult Create([Bind(Include = "MaAdmin,TaiKhoanAdmin,MatKhauAdmin")] tbAdmin tbAdmin)
{
if (ModelState.IsValid)
{
db.tbAdmins.Add(tbAdmin);
db.SaveChanges();
return(RedirectToAction("Index"));
}
return(View(tbAdmin));
}
// GET: AdminQuanLy/Delete/5
public ActionResult Delete(int?id)
{
if (id == null)
{
return(new HttpStatusCodeResult(HttpStatusCode.BadRequest));
}
tbAdmin tbAdmin = db.tbAdmins.Find(id);
if (tbAdmin == null)
{
return(HttpNotFound());
}
return(View(tbAdmin));
}
//
// GET: /Admin/Edit/5
public ActionResult Edit(int id = 0)
{
tbAdmin tbadmin = db.tbAdmin.Find(id);
if (tbadmin == null)
{
return(HttpNotFound());
}
AdminView v = new AdminView();
v.Admin_Name = tbadmin.Admin_Name;
v.Role_ID = tbadmin.Role_ID;
v.Admin_ID = tbadmin.Admin_ID;
ViewBag.Role_ID = new SelectList(db.tbRole, "Role_ID", "Role_Name", tbadmin.Role_ID);
return(View(v));
}
public ActionResult DangNhap(FormCollection f)
{
tbNguoiDung nd;
String taikhoan = f["Email"].ToString();
String matkhau = f["Password"].ToString();
nd = dt.tbNguoiDungs.SingleOrDefault(n => n.TaiKhoanNguoiDung == taikhoan && n.MatKhauNguoiDung == matkhau);
tbAdmin admin = dt.tbAdmins.SingleOrDefault(n => n.TaiKhoanAdmin == taikhoan && n.MatKhauAdmin == matkhau);
if (admin != null)
{
Session["Admin"] = admin;
return(Redirect("/Admin/IndexAdmin"));
}
if (nd != null)
{
Session["NguoiDung"] = nd;
Session["MaNguoiDung"] = nd.MaNguoiDung;
return(Redirect("/Home/Index"));
}
if (taikhoan == null)
{
ViewBag.taikhoan = "Chưa nhập tài khoản";
}
if (matkhau == null)
{
ViewBag.matkhau = "Chưa nhập mật khẩu";
}
if (taikhoan == null && matkhau == null)
{
ViewBag.taikhoanmatkhau = "Chưa nhập tài khoản và mật khẩu";
}
else
{
ViewBag.sai = "Sai tài khoản hoặc mật khẩu";
}
return(View());
}
public ActionResult ChangePassword(ChangePasswordView cpv)
{
if (ModelState.IsValid)
{
if (cpv.New_Admin_Password == cpv.Confirm_New_Admin_Password)
{
int id = int.Parse(System.Web.HttpContext.Current.Session["Admin_ID"].ToString());
tbAdmin admin = db.tbAdmin.Find(id);
admin.Admin_Password = FormsAuthentication.HashPasswordForStoringInConfigFile(cpv.New_Admin_Password, "SHA1");
db.Entry(admin).State = EntityState.Modified;
db.SaveChanges();
ViewBag.Tip = "密码修改成功";
return(View());
}
else
{
ModelState.AddModelError("Confirm_New_Admin_Password", "确认新密码与新密码不一致");
return(View());
}
}
ViewBag.Tip = "密码修改失败";
return(View());
}
public ActionResult Create(AdminView v)
{
if (ModelState.IsValid)
{
if (v.Admin_Password == v.Confirm_Admin_Password)
{
tbAdmin tbadmin = new tbAdmin();
tbadmin.Admin_Name = v.Admin_Name;
tbadmin.Admin_Password = FormsAuthentication.HashPasswordForStoringInConfigFile(v.Admin_Password, "SHA1");
tbadmin.Role_ID = v.Role_ID;
db.tbAdmin.Add(tbadmin);
db.SaveChanges();
return(RedirectToAction("Index"));
}
else
{
ModelState.AddModelError("Confirm_New_Admin_Password", "确认密码与密码不一致");
return(View());
}
}
ViewBag.Role_ID = new SelectList(db.tbRole, "Role_ID", "Role_Name", v.Role_ID);
return(View(v));
}
public ActionResult LogOn(LogOnModel model, string returnUrl)
{
if (ModelState.IsValid)
{
string secretPassword = FormsAuthentication.HashPasswordForStoringInConfigFile(model.Admin_Password, "SHA1");
var result = from s in db.tbAdmin
where s.Admin_Name == model.Admin_Name && s.Admin_Password == secretPassword && (s.Is_Delete == false || s.Is_Delete == null)
select s;
if (Session["ValidateCode"].ToString() != model.ValidateCode)
{
ModelState.AddModelError("ValidateCode", "验证码错误");
return(View());
}
if (result.ToList().Count > 0)
{
FormsAuthentication.SetAuthCookie(model.Admin_Name, true);
if (Url.IsLocalUrl(returnUrl) && returnUrl.Length > 1 && returnUrl.StartsWith("/") &&
!returnUrl.StartsWith("//") && !returnUrl.StartsWith("/\\"))
{
return(Redirect(returnUrl));
}
else
{
System.Web.HttpContext.Current.Session["Admin_ID"] = result.ToList()[0].Admin_ID;
System.Web.HttpContext.Current.Session["Admin_Name"] = result.ToList()[0].Admin_Name;
System.Web.HttpContext.Current.Session["BackUp"] = 0;
tbAdmin admin = db.tbAdmin.Find(result.ToList()[0].Admin_ID);
tbRole role = db.tbRole.Find(admin.Role_ID);
System.Web.HttpContext.Current.Session["Role_Name"] = role.Role_Name;
System.Web.HttpContext.Current.Session["Role_ID"] = role.Role_ID;
StringBuilder sb = new StringBuilder();
var query = from s in db.tbRoleMenu
where s.Role_ID == role.Role_ID
select s;
foreach (tbRoleMenu RoleMenu in query.ToList())
{
if (RoleMenu.Menu_Name != null)
{
sb.Append(",").Append(RoleMenu.Menu_Name);
}
}
if (sb.ToString() == string.Empty)
{
System.Web.HttpContext.Current.Session["Menu_Name"] = string.Empty;
}
else
{
System.Web.HttpContext.Current.Session["Menu_Name"] = sb.ToString().Substring(1);
}
IPHostEntry IpEntry = Dns.GetHostEntry(Dns.GetHostName());
string myip = IpEntry.AddressList[1].ToString();
if (IpEntry.AddressList.Length > 2)
{
myip = IpEntry.AddressList[2].ToString();
}
//tbLog log = new tbLog();
//log.Admin_ID = result.ToList()[0].Admin_ID;
//log.Login_Time = DateTime.Now;
//log.IP = myip;
//db.tbLog.Add(log);
db.SaveChanges();
return(RedirectToAction("Index", "Home"));
}
}
else
{
ModelState.AddModelError("", "");
}
}
// If we got this far, something failed, redisplay form
return(View());
}
