From a8c17ad109fb36f284ecf11a9c8424c4fd3a9146 Mon Sep 17 00:00:00 2001
From: Uncled1023 <admin@teknik.io>
Date: Thu, 29 Sep 2016 14:42:12 -0700
Subject: [PATCH] Fixed user auth cookie not using the real username, but the
 one passed in from the model.

---
 Teknik/Areas/User/Controllers/UserController.cs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Teknik/Areas/User/Controllers/UserController.cs b/Teknik/Areas/User/Controllers/UserController.cs
index fa89fff..ae1d5de 100644
--- a/Teknik/Areas/User/Controllers/UserController.cs
+++ b/Teknik/Areas/User/Controllers/UserController.cs
@@ -216,7 +216,7 @@ namespace Teknik.Areas.Users.Controllers
                         {
                             returnUrl = Request.UrlReferrer.AbsoluteUri.ToString();
                             // They don't need two factor auth.
-                            HttpCookie authcookie = UserHelper.CreateAuthCookie(model.Username, model.RememberMe, Request.Url.Host.GetDomain(), Request.IsLocal);
+                            HttpCookie authcookie = UserHelper.CreateAuthCookie(user.Username, model.RememberMe, Request.Url.Host.GetDomain(), Request.IsLocal);
                             Response.Cookies.Add(authcookie);
                         }