Home
Browse Code Add-Ins Blog Language Feeds Service Stats FAQs Feedback About
Manage Your Code
Snippet: CheckCredentials (C#)
Title: CheckCredentials Language: C#
Description: Check credentials for a given user Views: 204
Author: Martin S. Date Added: 12/21/2008
Copy Code   
1/// <summary>
2		/// Check credentials when blog user signs in
3		/// </summary>
4		/// <param name="username">Username</param>
5		/// <param name="password">Password</param>
6		/// <returns>Boolean value</returns>
7		public static bool checkCredentials(string username, string password)
8		{
9			string strSQL = "SELECT password,salt FROM tblUsers WHERE username=@username";
10
11			SqlConnection objConn = new SqlConnection(connString);
12			SqlCommand objCmd = new SqlCommand(strSQL, objConn);
13
14			objCmd.Parameters.AddWithValue("@username", username);
15
16			string storedPassword = string.Empty;
17			string salt = string.Empty;
18			string givenPassword = string.Empty;
19			bool flag = false;
20
21			try
22			{
23				objConn.Open();
24				SqlDataReader sdr = objCmd.ExecuteReader();
25
26				if (!sdr.Read())
27				{
28					flag = false;
29				}
30				else
31				{
32					storedPassword = (string)sdr["password"];
33					salt = (string)sdr["salt"];
34					givenPassword = FormsAuthentication.HashPasswordForStoringInConfigFile(salt + password, "SHA1");
35					flag = (storedPassword == givenPassword);
36				}
37			}
38			catch { }
39			finally
40			{
41				objConn.Close();
42			}
43
44			return flag;
45		}