public IActionResult Auth(LoginUserDto userDto)
{
var user = dataContext.Set <Client>().FirstOrDefault(u => u.Phone == userDto.Phone);
if (user == null || !PasswordHash.FromBase64(user.PasswordHash).Verify(userDto.Password))
{
return(BadRequest());
}
return(Ok(tokenService.CreateTokenObject(user)));
}
public IActionResult Authenticate([FromBody] LoginAdminDto input)
{
var admin = context.Set <Administrator>().FirstOrDefault(a => a.Login == input.Login);
if (admin == null || !PasswordHash.FromBase64(admin.PasswordHash).Verify(input.Password))
{
return(BadRequest());
}
return(Ok(tokenService.CreateTokenObject(admin)));
}
public IActionResult UpdatePassword([FromBody] NewPasswordObject input)
{
//fetch user
var user = this.GetClient(dataContext);
//ensure password
if (user == null || !PasswordHash.FromBase64(user.PasswordHash).Verify(input.OldPassword))
{
return(BadRequest());
}
//create new
user.PasswordHash = new PasswordHash(input.NewPassword).ToBase64();
dataContext.Update(user);
return(Ok());
}
