public ActionResult UserLogin(LogInUserBindingModel model) { if (ModelState.IsValid) { if (new CustomMembershipProvider().ValidateUser(model.Username, model.Password)) { // var cookie = new HttpCookie("Login"); // cookie["username"] = model.Username; // cookie.Expires.AddHours(1); // Response.Cookies.Add(cookie); // Response.Redirect("UserHomePage"); //Session["login_user"] = "******"; //string username = Session["login_user"].ToString().Trim(); FormsAuthentication.SetAuthCookie(model.Username, false); // return RedirectToAction("userLogin", "User"); Session["loggedUser"] = model.Username; return(RedirectToAction("GetUsersContragents")); } else { ModelState.AddModelError("", "the user name or password provided is incorrect."); ViewBag.Title = "The user name or password provided is incorrect."; return(View("LogInView")); } } return(RedirectToAction("userLogIn")); }
public LoginResultModel UserLogin([FromBody] LogInUserBindingModel model) { var login = new LoginResultModel(); if (ModelState.IsValid) { login.Username = model.Username; login.Password = model.Password; try { using (SqlConnection connection = new SqlConnection(ConnectionStrings.connectionString)) { SqlCommand command = new SqlCommand(UserQueries.UserLogin, connection); command.Parameters.AddWithValue("@inUsername", login.Username); command.Parameters.AddWithValue("@inPassword", login.Password); connection.Open(); SqlDataReader reader = command.ExecuteReader(); while (reader.Read()) { string message = (string)(reader["Msg"] == DBNull.Value ? "" : (reader["Msg"].ToString())); int code = (int)(reader["Code"] == DBNull.Value ? -1 : int.Parse(reader["Code"].ToString())); string user = (string)(reader["User"] == DBNull.Value ? "" : (reader["User"].ToString())); string pass = (string)(reader["Password"] == DBNull.Value ? "" : (reader["Password"].ToString())); login = new LoginResultModel() { Username = user, Password = pass }; } reader.Close(); } } catch (Exception ex) { var error = ex; } } return(login); }