public async Task <IActionResult> OnPostAsync(string returnUrl = null) { returnUrl = returnUrl ?? Url.Content("~/"); if (ModelState.IsValid) { // This doesn't count login failures towards account lockout // To enable password failures to trigger account lockout, set lockoutOnFailure: true var result = await _signInManager.PasswordSignInAsync(Input.UserName, Input.Password, Input.RememberMe, lockoutOnFailure : false); if (result.Succeeded) { MathGameDBContext db = new MathGameDBContext(); _logger.LogInformation("User logged in."); //HttpContext.Session.SetInt32("PlayerCurrentScore", 0); var currentUser = db.AspNetUsers.SingleOrDefault(u => u.UserName == Input.UserName).Id; var firstTimeLoggingIn = db.Player.SingleOrDefault(u => u.PlayerId == currentUser).IsFirstTimeLoggingIn; if (firstTimeLoggingIn) { db.Player.SingleOrDefault(u => u.PlayerId == currentUser).IsFirstTimeLoggingIn = false; db.SaveChanges(); return(RedirectToAction("IsFirstTimeLogginIn", "Player")); } else { return(RedirectToAction("Player", "Player")); } } if (result.RequiresTwoFactor) { return(RedirectToPage("./LoginWith2fa", new { ReturnUrl = returnUrl, RememberMe = Input.RememberMe })); } if (result.IsLockedOut) { _logger.LogWarning("User account locked out."); return(RedirectToPage("./Lockout")); } else { ModelState.AddModelError(string.Empty, "Invalid login attempt."); return(Page()); } } // If we got this far, something failed, redisplay form return(Page()); }