public void checkOldPassword(User user, string oldPassword) { if (!PasswordCrypt.ComparePasswords(user.Password, oldPassword)) { throw new ArgumentException(ErrorMessages.BadOldPassword, "OldPassword"); } }
private User AuthenticateUser(UserLogin login) { var query = appDbContext.Users.AsQueryable(); User DBUser = query.Where(x => x.Email == login.Email).SingleOrDefault(); // Validate user credentials if (DBUser != null && PasswordCrypt.ComparePasswords(DBUser.Password, login.Password)) { return(DBUser); } return(null); }