public ActionResult Login()
{
var username = Request["username"];
var password = Request["password"];
var sessionid = Request.QueryString["sid"];
// hints:
//var used_browser = Request.Browser.Platform;
//var ip = Request.UserHostAddress;
Lab2Userlogin model = new Lab2Userlogin();
if (model.checkCredentials(username, password))
{
model.storeSessionInfos(username, password, sessionid);
HttpCookie c = new HttpCookie("sid");
c.Expires = DateTime.Now.AddMonths(2);
c.Value = sessionid;
Response.Cookies.Add(c);
return(RedirectToAction("Backend", "Lab2"));
}
else
{
ViewBag.message = "Wrong Credentials";
return(View());
}
}
public ActionResult Backend()
{
var sessionid = "";
if (Request.Cookies.AllKeys.Contains("sid"))
{
sessionid = Request.Cookies["sid"].Value.ToString();
}
if (!string.IsNullOrEmpty(Request.QueryString["sid"]))
{
sessionid = Request.QueryString["sid"];
}
// hints:
//var used_browser = Request.Browser.Platform;
//var ip = Request.UserHostAddress;
Lab2Userlogin model = new Lab2Userlogin();
if (model.checkSessionInfos(sessionid))
{
return(View());
}
else
{
return(RedirectToAction("Index", "Lab2"));
}
}
public ActionResult Login()
{
var username = Request["username"];
var password = Request["password"];
var sessionid = Request.QueryString["sid"];
// hints:
//var used_browser = Request.Browser.Platform;
//var ip = Request.UserHostAddress;
Lab2Userlogin model = new Lab2Userlogin();
if (model.checkCredentials(username, password))
{
//encryption of SID
if (string.IsNullOrEmpty(sessionid))
{
var hash = (new SHA1Managed()).ComputeHash(Encoding.UTF8.GetBytes(DateTime.Now.ToString()));
sessionid = string.Join("", hash.Select(b => b.ToString("x2")).ToArray());
}
ViewBag.sessionid = sessionid;
model.storeSessionInfos(username, password, sessionid);
HttpCookie c = new HttpCookie("sid");
c.Expires = DateTime.Now.AddMonths(2);
c.Value = sessionid;
Response.Cookies.Add(c);
return(RedirectToAction("Backend", "Lab2"));
}
else
{
ViewBag.message = "Wrong Credentials";
return(View());
}
}