public ActionResult Login(LoginDetailsViewModel loginData) { if (!ModelState.IsValid) { ModelState.AddModelError("", "Invalid Username or Password."); return(View(loginData)); } ResumeBuilderDBContext dbContext = new ResumeBuilderDBContext(); if (!dbContext.Logins.Any(m => m.Username == loginData.UserName)) { ModelState.AddModelError("", "Username does not exist."); return(View(loginData)); } else { try { var userLoginDetails = dbContext.Logins.FirstOrDefault(m => m.Username == loginData.UserName); var saltBytes = Encoding.UTF8.GetBytes(userLoginDetails.Salt); byte[] enteredPasswordBytes = PasswordSecurity.ComputeHMAC_SHA256(Encoding.UTF8.GetBytes(loginData.Password), saltBytes); byte[] savedPasswordBytes = Encoding.UTF8.GetBytes(userLoginDetails.Password); if (PasswordSecurity.MatchSHA(savedPasswordBytes, enteredPasswordBytes)) { if (Session.Count == 0) { Session["UserID"] = userLoginDetails.UserID; return(RedirectToAction("Index", "Resume")); } else { ModelState.AddModelError("", "Session already exists. Try Again."); return(View(loginData)); } } else { throw new UnauthorizedAccessException(); } } catch (UnauthorizedAccessException) { ModelState.AddModelError("", "Wrong Password. Try Again."); return(View(loginData)); } catch (Exception) { ModelState.AddModelError("", "Oops!!! Something went wrong. Try Again."); return(View(loginData)); } } }
public ActionResult Register(LoginDetailsViewModel registrationDetails) { if (!ModelState.IsValid) { return(View(registrationDetails)); } ResumeBuilderDBContext dbContext = new ResumeBuilderDBContext(); if (dbContext.Logins.Any(m => m.Username == registrationDetails.UserName)) { ModelState.AddModelError("", "User already exists."); return(View(registrationDetails)); } else { try { byte[] saltBytes = PasswordSecurity.GenerateSalt(); string saltString = Convert.ToBase64String(saltBytes); byte[] hashedPasswordBytes = PasswordSecurity.ComputeHMAC_SHA256(Encoding.UTF8.GetBytes(registrationDetails.Password), saltBytes); string hashedPasswordString = Convert.ToBase64String(hashedPasswordBytes); UserDetails newUser = new UserDetails { DateOfBirth = DateTime.Now }; Login newLogin = new Login { Username = registrationDetails.UserName, Password = hashedPasswordString, Salt = saltString, UserDetails = newUser }; dbContext.Logins.Add(newLogin); dbContext.SaveChanges(); } catch (Exception) { ModelState.AddModelError("", "Something went wrong try again."); return(View(registrationDetails)); } } // If we got this far, something failed, redisplay form return(View(registrationDetails)); }
public ResumeController() { db = new ResumeBuilderDBContext(); }
public SearchController() { db = new ResumeBuilderDBContext(); }
public AccountController() { dbContext = new ResumeBuilderDBContext(); }
public SaveDetailsController() { db = new ResumeBuilderDBContext(); }
public SettingsController() { db = new ResumeBuilderDBContext(); }