public void checkOldPassword(User user, string oldPassword)
{
if (!PasswordCrypt.ComparePasswords(user.Password, oldPassword))
{
throw new ArgumentException(ErrorMessages.BadOldPassword, "OldPassword");
}
}
private User AuthenticateUser(UserLogin login)
{
var query = appDbContext.Users.AsQueryable();
User DBUser = query.Where(x => x.Email == login.Email).SingleOrDefault();
// Validate user credentials
if (DBUser != null && PasswordCrypt.ComparePasswords(DBUser.Password, login.Password))
{
return(DBUser);
}
return(null);
}