public ActionResult Login(string LoginName, string Password) { //var Customer = db.Customers // .Where(c => c.CustomerLoginName == LoginName && c.CustomerPassword == Password) // .FirstOrDefault(); int customerHashCheckId = PasswordSecurity.GetUserIdByUsernameAndHashedSaltedPassword(LoginName, Password); var Employee = db.Employees .Where(e => e.EmployeeLoginName == LoginName && e.EmployeePassword == Password) .FirstOrDefault(); if (customerHashCheckId != 1) { var Customer = db.Customers.Find(customerHashCheckId); //return Content(customerHashCheckId.ToString()); Session["Welcome"] = Customer.CustomerName + " " + "歡迎光臨"; Session["Customer"] = Customer; Session["CustomerID"] = Customer.CustomerID; return(RedirectToAction("Index")); } else if (Employee != null) { Session["Welcome"] = Employee.EmployeeLoginName + " " + "管理員"; Session["Employee"] = Employee; Session["EmployeeID"] = Employee.EmployeeID; return(RedirectToAction("Workdistinction", "Service")); } else { ViewBag.Message = "帳密輸入錯誤"; } return(View()); }