public static bool CheckLoginDetails(string username, string input) { string password = ""; try { MySqlConnection connection = OwnDatabase.DB.GetConnection(); connection.Open(); MySqlCommand command = connection.CreateCommand(); command.CommandText = "SELECT password FROM users WHERE name=@name LIMIT 1"; command.Parameters.AddWithValue("@name", username); using (MySqlDataReader reader = command.ExecuteReader()) { if (reader.HasRows) { reader.Read(); password = reader.GetString("password"); } } connection.Close(); return(PasswortDerivation.Verify(password, input)); } catch (Exception e) { Alt.Log("CheckLoginDetails: " + e.StackTrace); Alt.Log("CheckLoginDetails: " + e.Message); } return(false); }
public static int CreatePlayer(string username, string password) { string saltedPassword = PasswortDerivation.Derive(password); try { MySqlConnection connection = OwnDatabase.DB.GetConnection(); connection.Open(); MySqlCommand command = connection.CreateCommand(); command.CommandText = "INSERT INTO users (name, password) VALUES (@name, @password)"; command.Parameters.AddWithValue("@name", username); command.Parameters.AddWithValue("@password", saltedPassword); command.ExecuteNonQuery(); connection.Close(); return((int)command.LastInsertedId); } catch (Exception e) { Alt.Log("CreatePlayer: " + e.StackTrace); Alt.Log("CreatePlayer: " + e.Message); } return(-1); }