API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 26th, 2016
65
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.65 KB | None | 0 0
raw download clone embed print report
  1. [HttpPost]
  2. public ActionResult Login(Models.Logins user)
  3. {
  4. if (ModelState.IsValid)
  5. {
  6. if (user.IsValid(user.Username, user.Password))
  7. {
  8. FormsAuthentication.SetAuthCookie(user.Username, user.RememberMe);
  9. return RedirectToAction("Index", "Home");
  10. }
  11. else
  12. {
  13. ModelState.AddModelError("", "Login gegevens kloppen niet!");
  14. }
  15. }
  16. return View(user);
  17. }
  18.  
  19. using System;
  20. using System.Collections.Generic;
  21. using System.ComponentModel.DataAnnotations;
  22. using System.Data;
  23. using System.Data.Entity;
  24. using System.Data.SqlClient;
  25. using System.Linq;
  26. using System.Web;
  27.  
  28. namespace RTApplicatie.Models
  29. {
  30. public class Logins
  31. {
  32. [Required]
  33. public int ID { get; set; }
  34.  
  35. [Required]
  36. [Display(Name = "User name")]
  37. public string Username { get; set; }
  38.  
  39. [Required]
  40. [DataType(DataType.Password)]
  41. [Display(Name = "Password")]
  42. public string Password { get; set; }
  43.  
  44. [Display(Name = "Remember on this computer")]
  45. public bool RememberMe { get; set; }
  46.  
  47. [Required]
  48. public bool Rights { get; set; }
  49. /// <summary>
  50. /// Checks if user with given password exists in the database
  51. /// </summary>
  52. /// <param name="_username">User name</param>
  53. /// <param name="_password">User password</param>
  54. /// <returns>True if user exist and password is correct</returns>
  55. public bool IsValid(string _username, string _password)
  56. {
  57. using (var cn = new SqlConnection(@"Data Source=(localdb)MSSQLLocalDB;"))
  58. {
  59. string _sql = @"SELECT [Username] FROM [dbo].[System_Users] " +
  60. @"WHERE [Username] = @u AND [Password] = @p";
  61. var cmd = new SqlCommand(_sql, cn);
  62. cmd.Parameters
  63. .Add(new SqlParameter("@u", SqlDbType.NVarChar))
  64. .Value = _username;
  65. cmd.Parameters
  66. .Add(new SqlParameter("@p", SqlDbType.NVarChar))
  67. .Value = Helpers.SHA1.Encode(_password);
  68. cn.Open();
  69. var reader = cmd.ExecuteReader();
  70. if (reader.HasRows)
  71. {
  72. reader.Dispose();
  73. cmd.Dispose();
  74. return true;
  75. }
  76. else
  77. {
  78. reader.Dispose();
  79. cmd.Dispose();
  80. return false;
  81. }
  82. }
  83. }
  84. }
  85.  
  86. public class RekenContext : DbContext
  87. {
  88. public DbSet<Logins> RTApplicatie { get; set; }
  89. }
  90. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!