public bool AuthenticateIndividual(Credentials credentials)
{
var principal = IndividualRepository.GetIndividualCredentialsByUsername(credentials.Username);
if (principal == null)
{
return(false);
}
return(SlowEquals(principal.Password, HashPassword(credentials.Password, principal.Salt)));
}
public IActionResult Authenticate(Credentials credentials)
{
if (AuthenticationHelper.AuthenticateIndividual(credentials))
{
var createdToken = AuthenticationHelper.GenerateJwt(Mapper.Map <Principal>(IndividualRepository.GetIndividualCredentialsByUsername(credentials.Username)));
Response.Cookies.Append("token", createdToken, new CookieOptions()
{
HttpOnly = true, IsEssential = true, Expires = DateTime.Now.AddDays(10)
});
return(Ok(new { token = createdToken }));
}
return(Unauthorized());
}
