public ActionResult Validate(UserLogonModel userModel)
{
try
{
var account = new AccountInfo();
var userobj = new User()
{
UserName = userModel.UserName,
Password = userModel.Password
};
var errorMessage = "";
if (SecurityService.ValidateCredentials(userobj, out errorMessage))
{
account.SetUserName(userModel.UserName);
account.SetUserCredentials(userModel.Password);
if (TempData != null && TempData.Count > 0 && TempData.ContainsKey("ReturnURL"))
{
var returnUrl = TempData["ReturnURL"].ToString();
TempData.Clear();
var decodedUrl = "";
if (!string.IsNullOrEmpty(returnUrl))
decodedUrl = Server.UrlDecode(returnUrl);
if (Url.IsLocalUrl(decodedUrl))
{
decodedUrl = decodedUrl.Replace("\\\"", ""); ;
decodedUrl = Request.Url.Scheme + "://" + Request.Url.Authority + decodedUrl;
return Redirect(decodedUrl);
}
}
return RedirectToAction("Index", "Home");
}
if (errorMessage.ToUpper().Equals("LDAPERROR"))
{
ModelState.AddModelError("UserName", _InvalidUser);
return View("Login");
}
return View("Login");
}
catch (System.Runtime.InteropServices.COMException ce)
{
ModelState.AddModelError("UserName", ce.Message);
return View("Login");
}
catch (InvalidOperationException ix)
{
ModelState.AddModelError("UserName", _InvalidUser);
ModelState.AddModelError("Password", String.Empty);
return View("Login");
}
catch (Exception ex)
{
throw ex;
}
}
public bool ValidateCredentials(User userModel,out string errorMessage)
{
errorMessage = "";
return SecurityDao.ValidateCredentials(userModel, out errorMessage);
}