Exemple #1
0
        public bool ValidateUser(string userId, string password)
        {
            var salt = LoginDetailsRepository.GetUserSalt(userId);

            if (salt == null)
            {
                return(false);
            }
            var userPassword = LoginDetailsRepository.GetUserPassword(userId);
            MD5 md5          = new MD5CryptoServiceProvider();

            md5.ComputeHash(ASCIIEncoding.ASCII.GetBytes(salt + password));
            byte[]        result     = md5.Hash;
            StringBuilder strBuilder = new StringBuilder();

            foreach (var i in result)
            {
                strBuilder.Append(i.ToString("x2"));
            }
            var hashedPassword = strBuilder.ToString();

            if (String.Equals(userPassword, hashedPassword))
            {
                return(true);
            }
            return(false);
        }