public User Authenticate(string username, string password) { var user = GetUserByUsername(username); var passwordHash = PasswordCreator.GetHash(password, user.PasswordSalt); if (user.PasswordHash != passwordHash) { throw new IncorrectPasswordException(); } return(user); }
private static void AddUsers(ApplicationDbContext context) { var passwordSalt = PasswordCreator.GetSalt(); var passwordHash = PasswordCreator.GetHash("admin", passwordSalt); var admin = new User { FirstName = "Admin First Name", LastName = "Admin Last Name", Email = "*****@*****.**", IsActive = true, PasswordSalt = passwordSalt, PasswordHash = passwordHash, Username = "******" }; context.Users.Add(admin); context.SaveChanges(); }