public ActionResult Profil(UserView userView) { if (ModelState.IsValid) { string PasswordChangeToken = (string)Request["PasswordChangeToken"]; User user = DB.FindByUserName(OnlineUsers.Find(userView.Id).UserName); if (userView.NewPassword.Equals(PasswordChangeToken)) { userView.Password = user.Password; } else { userView.Password = userView.NewPassword; } DB.UpdateUser(userView); userView.CopyToUser(OnlineUsers.GetSessionUser()); } return(RedirectToAction("Profil")); }