public void PasswordsAreSalted()
{
Player testPlayer = this.CreateTestPlayer();
User userModel = testPlayer.User;
CosmoMongerMembershipUser user = new CosmoMongerMembershipUser(userModel);
user.ChangePassword("test");
string currentPasswordHash = userModel.Password;
user.ChangePassword("test");
Assert.That(currentPasswordHash, Is.Not.EqualTo(userModel.Password), "Hashes for the same password should not match due to salting.");
}
public void CheckPassword()
{
Player testPlayer = this.CreateTestPlayer();
User userModel = testPlayer.User;
CosmoMongerMembershipUser user = new CosmoMongerMembershipUser(userModel);
user.ChangePassword("test");
// Verify user
Assert.That(user.VerifyEmail(userModel.VerificationCode), Is.True, "User should validate.");
Assert.That(user.ValidatePassword("test"), Is.True, "Password should check to be valid.");
}