using System.Web.Mvc; using Portoa.Web; using Portoa.Web.ErrorHandling; using VideoGameQuotes.Api; using VideoGameQuotes.Web.Models; using VideoGameQuotes.Web.Security; using VideoGameQuotes.Web.Services; namespace VideoGameQuotes.Web.Controllers { [IsValidUser(Group = UserGroup.Admin)] public class AdminController : Controller { private readonly ICurrentUserProvider userProvider; private readonly IAdministrationService adminService; public AdminController(ICurrentUserProvider userProvider, IAdministrationService adminService) { this.userProvider = userProvider; this.adminService = adminService; } public ActionResult Index() { return View(); } [HttpGet] public ActionResult Password() { return View(new ChangePasswordModel()); } [HttpPost] public ActionResult Password(ChangePasswordModel model) { if (!ModelState.IsValid) { return View(model); } var user = userProvider.CurrentUser; if (user == null) { return View("Unknown", new ErrorModel()); } try { user.ChangePassword(model.Password); adminService.SaveUser(user); return View("PasswordSuccessfullyChanged"); } catch { ControllerContext.AddModelError("password", "Unable to change password"); return View(model); } } } }