public LoginResult AuthenticateUser(string userName, string password) { User user = dbContext.Users.Where(u => u.UserName == userName).Select(u => u) .FirstOrDefault(); if (user != null) { string passwordValueInDatabase = user.Password; if (user.Password == password) //Later condition is just only for development { CurrentUser = user; ChangePassword(password); return new LoginResult() { Authenticated = true, NeedPasswordReset = (passwordValueInDatabase == user.UserName) }; } else if (StringCipher.Encrypt(password, "ordermanager") == user.Password) { CurrentUser = user; return new LoginResult() { Authenticated = true, NeedPasswordReset = (passwordValueInDatabase == user.UserName) }; } else return new LoginResult() { Authenticated = false, Message = "Authentication failed." }; } return new LoginResult() { Authenticated = false, Message = "User not found" }; }
public void AddNewUser(User NewUser) { dbContext.Users.Add(NewUser); Save(); }