mirror of
https://github.com/zoriya/Kyoo.git
synced 2025-05-24 02:02:36 -04:00
55 lines
1.7 KiB
C#
55 lines
1.7 KiB
C#
using System;
|
|
using System.Linq;
|
|
using System.Security.Cryptography;
|
|
using IdentityModel;
|
|
|
|
namespace Kyoo.Authentication
|
|
{
|
|
public static class PasswordUtils
|
|
{
|
|
/// <summary>
|
|
/// Generate an OneTimeAccessCode.
|
|
/// </summary>
|
|
/// <returns>A new otac.</returns>
|
|
public static string GenerateOTAC()
|
|
{
|
|
return CryptoRandom.CreateUniqueId();
|
|
}
|
|
|
|
/// <summary>
|
|
/// Hash a password to store it has a verification only.
|
|
/// </summary>
|
|
/// <param name="password">The password to hash</param>
|
|
/// <returns>The hashed password</returns>
|
|
public static string HashPassword(string password)
|
|
{
|
|
byte[] salt = new byte[16];
|
|
new RNGCryptoServiceProvider().GetBytes(salt);
|
|
Rfc2898DeriveBytes pbkdf2 = new(password, salt, 100000);
|
|
byte[] hash = pbkdf2.GetBytes(20);
|
|
byte[] hashBytes = new byte[36];
|
|
Array.Copy(salt, 0, hashBytes, 0, 16);
|
|
Array.Copy(hash, 0, hashBytes, 16, 20);
|
|
return Convert.ToBase64String(hashBytes);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Check if a password is the same as a valid hashed password.
|
|
/// </summary>
|
|
/// <param name="password">The password to check</param>
|
|
/// <param name="validPassword">
|
|
/// The valid hashed password. This password must be hashed via <see cref="HashPassword"/>.
|
|
/// </param>
|
|
/// <returns>True if the password is valid, false otherwise.</returns>
|
|
public static bool CheckPassword(string password, string validPassword)
|
|
{
|
|
byte[] validHash = Convert.FromBase64String(validPassword);
|
|
byte[] salt = new byte[16];
|
|
Array.Copy(validHash, 0, salt, 0, 16);
|
|
Rfc2898DeriveBytes pbkdf2 = new(password, salt, 100000);
|
|
byte[] hash = pbkdf2.GetBytes(20);
|
|
return hash.SequenceEqual(validHash.Skip(16));
|
|
}
|
|
}
|
|
}
|