public bool AuthenticateIndividual(Credentials credentials) { var principal = IndividualRepository.GetIndividualCredentialsByUsername(credentials.Username); if (principal == null) { return(false); } return(SlowEquals(principal.Password, HashPassword(credentials.Password, principal.Salt))); }
public IActionResult Authenticate(Credentials credentials) { if (AuthenticationHelper.AuthenticateIndividual(credentials)) { var createdToken = AuthenticationHelper.GenerateJwt(Mapper.Map <Principal>(IndividualRepository.GetIndividualCredentialsByUsername(credentials.Username))); Response.Cookies.Append("token", createdToken, new CookieOptions() { HttpOnly = true, IsEssential = true, Expires = DateTime.Now.AddDays(10) }); return(Ok(new { token = createdToken })); } return(Unauthorized()); }