Where would I haveh password in asp.net using mvc4 and EF?

Question

Where would I haveh password in asp.net using mvc4 and EF?

therefore, some models appear in the default view. I am trying to find out if I want a hash password using the Crypto.HashPassword () method. Am I doing this in a controller or model or where? I researched how to do this, but I just find a different method, not where the action takes place. Starting with MVC and asp.net, so any point in the right direction will be a big help. Thank you in advance.

+3

c # cryptography asp.net entity-framework asp.net-mvc-4

Shawn Feb 13 '14 at 4:41

source share

3 answers

- - .

, , :

, Crypto.HashPassword(pwd) , . , .
(, ), .
, Crypto.VerifyHashedPassword(storedHash, submittedPwd). Crypto pwd IV True, (pwd ), False, (pwd ).

MVC ASP.Net, ASP.Net Forms (, MSDN), .

+3

Whitzz 13 . '14 5:42

.

password [Encrypt (true)]. , , , Encrypt ( DbContext Saving). .

, , .

0

L.W.C. Nirosh 13 . '14 5:19

CodesInChaos · Accepted Answer · 2014-02-13T11:22:53+0000

I would define a user class as follows:

public class User
{
    private string PasswordHash {get; set;} //assuming your db supports serializing private properties. If not increase visibility as necessary.

    public void SetPassword(string newPassword)
    {
        PasswordHash = PasswordHasher.CreateHash(newPassword);
    }

    public bool VerifyPassword(string passwordCandidate)
    {
        return PasswordHasher.Verify(PasswordHash, passwordCandidate);
    }
}

I would not have a property User.Password, since you never store it, and there is no simple mapping between passwords and hashes.

PasswordHash . , / .

API Crypto. Crypto .

Where would I haveh password in asp.net using mvc4 and EF?

More articles: