private static bool CheckPassword(string password, RegisteredUser userRecord) { //Calculate hash and compare var pwKey = AuthCryptoHelper.CalculateUserPasswordHash(password, userRecord.CryptoSalt, userRecord.PasswordCryptoConf); return(StructuralComparisons.StructuralEqualityComparer.Equals(pwKey, userRecord.PasswordKey)); }
private static RegisteredUser RegisterUser(RegistrationRequest regRequest) { RegisteredUser newUserRecord = null; if (FindUserByUsernameAsync(regRequest.Username).GetAwaiter().GetResult() != null) { //BAD! Another conflicting user exists! throw new SecurityException("A user with the same username already exists!"); } var db = DatabaseAccessService.OpenOrCreateDefault(); var registeredUsers = db.GetCollection <RegisteredUser>(DatabaseAccessService.UsersCollectionDatabaseKey); using (var trans = db.BeginTrans()) { //Calculate cryptographic info var cryptoConf = PasswordCryptoConfiguration.CreateDefault(); var pwSalt = AuthCryptoHelper.GetRandomSalt(64); var encryptedPassword = AuthCryptoHelper.CalculateUserPasswordHash(regRequest.Password, pwSalt, cryptoConf); // Create user newUserRecord = new RegisteredUser { Identifier = Guid.NewGuid().ToString(), Username = regRequest.Username, PhoneNumber = regRequest.PhoneNumber, ApiKey = StringUtils.SecureRandomString(40), CryptoSalt = pwSalt, PasswordCryptoConf = cryptoConf, PasswordKey = encryptedPassword, }; // Add the user to the database registeredUsers.Insert(newUserRecord); // Index database registeredUsers.EnsureIndex(x => x.Identifier); registeredUsers.EnsureIndex(x => x.ApiKey); registeredUsers.EnsureIndex(x => x.Username); trans.Commit(); } return(newUserRecord); }