Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- private void SetPassword(string user, string userPassword)
- {
- string pwdToHash = userPassword + "^Y8~JJ"; // ^Y8~JJ is my hard-coded salt
- string hashToStoreInDatabase = BCrypt.HashPassword(pwdToHash, BCrypt.GenerateSalt());
- using (SqlConnection sqlConn = new System.Data.SqlClient.SqlConnection(...)
- {
- sqlConn.Open();
- SqlCommand cmSql = sqlConn.CreateCommand();
- cmSql.CommandText = "UPDATE LOGINS SET PASSWORD=@parm1 WHERE USERNAME=@parm2";
- cmSql.Parameters.Add("@parm1", SqlDbType.Char);
- cmSql.Parameters.Add("@parm2", SqlDbType.VarChar);
- cmSql.Parameters["@parm1"].Value = hashToStoreInDatabase;
- cmSql.Parameters["@parm2"].Value = user;
- cmSql.ExecuteNonQuery();
- }
- }
- private bool DoesPasswordMatch(string hashedPwdFromDatabase, string userEnteredPassword)
- {
- return BCrypt.CheckPassword(userEnteredPassword + "^Y8~JJ", hashedPwdFromDatabase);
- }
Add Comment
Please, Sign In to add comment