public IActionResult ChangePassword([FromBody] ChangePasswordInfo changepassword) { if (string.IsNullOrEmpty(changepassword.TenantCode) || string.IsNullOrEmpty(changepassword.UserName) || string.IsNullOrEmpty(changepassword.OldPassword) || string.IsNullOrEmpty(changepassword.NewPassword)) { return(BadRequest("Invalid parameter")); } IActionResult response = Unauthorized(); SqlMembershipProvider sqlMembership = new SqlMembershipProvider(); if (sqlMembership.checkAuthorization(changepassword)) { var passwordpolicy = sqlMembership.getPasswordPolicy(changepassword.TenantCode, true); List <String> ErrorList = new List <String>(); if (passwordpolicy != null) { ErrorList = sqlMembership.ValidatePassword(changepassword, passwordpolicy); } if (ErrorList.Count == 0) { if (sqlMembership.ChangePasswordUpdateCredential(changepassword)) { response = Ok(); } } else { response = StatusCode((int)HttpStatusCode.InternalServerError, new { ErrorList = ErrorList }); } } return(response); }