public bool LoginUserCheck() { var myDbConnection = new ServerAccess(); PasswordHash checkPassword = new PasswordHash(); hashedPassword = checkPassword.HashPassword(Password, GetSalt()); using (myDbConnection.DBConnect) { bool exists; using (MySqlCommand checkLogin = new MySqlCommand(userCheckQuery, myDbConnection.DBConnect)) { checkLogin.Parameters.AddWithValue("@email", Email); checkLogin.Parameters.AddWithValue("@password", hashedPassword); myDbConnection.DBConnect.Open(); int TotalRows = 0; TotalRows = Convert.ToInt32(checkLogin.ExecuteScalar()); if (TotalRows > 0) { exists = true; } else { exists = false; } } myDbConnection.DBConnect.Close(); return(exists); } }
public void InsertNewUser() { var myDbConnection = new ServerAccess(); PasswordHash passwordHashing = new PasswordHash(); string salty = passwordHashing.CreateSalt(48); string generateHashedPassword = passwordHashing.HashPassword(Password, salty); using (myDbConnection.DBConnect) { myDbConnection.DBConnect.Open(); using (MySqlCommand newUserCommand = new MySqlCommand("NewUser", myDbConnection.DBConnect)) { newUserCommand.CommandType = CommandType.StoredProcedure; newUserCommand.Parameters.AddWithValue("email", Email); newUserCommand.Parameters.AddWithValue("password", generateHashedPassword); newUserCommand.Parameters.AddWithValue("username", Username); newUserCommand.Parameters.AddWithValue("Salt", salty); newUserCommand.ExecuteNonQuery(); } } myDbConnection.DBConnect.Close(); }
public bool checkUser() { var myDbConnection = new ServerAccess(); using (myDbConnection.DBConnect) { bool exists; using (MySqlCommand checkUserCommand = new MySqlCommand(checkAvailableUsers, myDbConnection.DBConnect)) { checkUserCommand.Parameters.AddWithValue("@email", Email); checkUserCommand.Parameters.AddWithValue("@usrname", Username); myDbConnection.DBConnect.Open(); int TotalRows = 0; TotalRows = Convert.ToInt32(checkUserCommand.ExecuteScalar()); if (TotalRows > 0) { exists = true; } else { exists = false; } } myDbConnection.DBConnect.Close(); return(exists); } }
public bool ExistingPassword() { var myDbConnection = new ServerAccess(); using (myDbConnection.DBConnect) { using (MySqlCommand checkUserPassword = new MySqlCommand(passwordCheckString, myDbConnection.DBConnect)) { checkUserPassword.Parameters.AddWithValue("@email", givenEmail); myDbConnection.DBConnect.Open(); MySqlDataReader reader = checkUserPassword.ExecuteReader(); while (reader.Read()) { oldPassword = (string)reader["Password"]; } } myDbConnection.DBConnect.Close(); if (oldPassword == ConvertNewPassword(newPassword)) { return(false); } else { return(true); } } }
public void ChangePassword() { var myDbConnection = new ServerAccess(); using (myDbConnection.DBConnect) { using (MySqlCommand updatePassword = new MySqlCommand("ChangePassword", myDbConnection.DBConnect)) { myDbConnection.DBConnect.Open(); updatePassword.CommandType = CommandType.StoredProcedure; updatePassword.Parameters.AddWithValue("email", givenEmail); updatePassword.Parameters.AddWithValue("password", ConvertNewPassword(newPassword)); updatePassword.ExecuteNonQuery(); } myDbConnection.DBConnect.Close(); } }
public string GetSalt() { var myDbConnection = new ServerAccess(); using (myDbConnection.DBConnect) { using (MySqlCommand getSalt = new MySqlCommand(getSaltCode, myDbConnection.DBConnect)) { getSalt.Parameters.AddWithValue("@email", Email); myDbConnection.DBConnect.Open(); MySqlDataReader reader = getSalt.ExecuteReader(); saltCode = null; if (reader.Read()) { saltCode = reader.GetString(0); } } myDbConnection.DBConnect.Close(); return(saltCode); } }