public IUser LoginUser(IUser user)
{
try
{
IUser DBuser = this.GetUserByUsername(user.Username);
if (DBuser == null)
{
throw new Exception("LoginError_User_Not_Found");
}
bool userIsVerified = HandlerFactory.GetLoginHandler().VerifyPasswordHash(user.UserPassword, DBuser.UserPassword, DBuser.Salt);
if (userIsVerified)
{
user.UserPassword = null;
user.Salt = null;
return(user);
}
else
{
throw new Exception("LoginError_Password_Incorrect");
}
}
catch (Exception e)
{
throw e;
}
}
public void CreateUser(IUser user)
{
IHashedUser hashedUser = HandlerFactory.GetLoginHandler().CreateHashedUserInfo(user.Username, user.UserPassword);
user.UserPassword = hashedUser.Password;
user.Salt = hashedUser.Salt;
using (var conn = new SqlConnection(HandlerFactory.GetDBConnectionString()))
{
conn.Open();
var identity = conn.Insert(user);
conn.Close();
}
}
