Duplicate hash method for password in .NET

Here is the library: http://www.zer7.com/software/cryptsharp

And this is “howtouse”:

    public override bool ValidateUser(string name, string password)
    {
        if (string.IsNullOrWhiteSpace(name))
            return false;
        if (string.IsNullOrWhiteSpace(password))
            return false;

        // this is just fetching the hash from the WP-database using BLToolkit. You can use any other way to get the hash from db ;)
        UserData ud = null;
        using (Db db = new Db())
        {
            db.SetCommand(@"SELECT id, user_pass FROM wp_users WHERE user_login=@user_login AND user_status=0",
                db.Parameter("user_login", name)
            );

            ud = db.ExecuteObject<UserData>();

        }

        if (null == ud)
            return false;
        // !!!! HERE IS CHECKING !!!
        // LIB USAGE:
        return CryptSharp.PhpassCrypter.CheckPassword(password, ud.user_pass);
    }

This code is a part of custom MembershipProvider.

Related Posts:

  1. wordpress redirect after password reset
  2. Password protecting a page
  3. How to save Admin FTP password
  4. How can I change the default wordpress password hashing system to something custom?
  5. Conditional to test if post has password protection enabled
  6. Bypass password protected posts via GET variable
  7. Check the password of a user
  8. Create a USERNAME and PASSWORD protected WordPress page
  9. Why do generated passwords start/end with spaces?
  10. Hide password protected posts
  11. Safe to store SMTP password in wp-config.php?
  12. Access code/password only restricts page access, no user registration..?
  13. PasswordHash not found in namespace
  14. Force all users in MU to change their passwords
  15. How to shorten length of auto generated password sent during registration?
  16. Forgot password not working
  17. Password reset message – change the network_home_url( ‘/’ )
  18. Lost password link is redirecting to /shop/my-account/lost-password/
  19. WordPress: force users to change password on first login
  20. Can’t login to wordpress despite changing password to something known directly in MySQL or using “Password Reset by Email” feature
  21. Lost password link redirects to my-account/lost-password/,how to fix it back to default lost password
  22. Password protect custom template
  23. Set content type to HTML for lost password email only
  24. Custom password generator for users
  25. Where is the reset password key stored/generated?
  26. How validate usernames/passwords against WP’s database?
  27. Make post password required to publish
  28. WordPress reset password returns invalid key
  29. Add error message on password protected pages
  30. User password field is empty
  31. Password reset bug? – “Sorry, that key does not appear to be valid”
  32. How to set minimum length and error message for password recovery?
  33. Get plain password on register
  34. post_password_required() not recognizing cookie set with correct password
  35. Password protect the site (without htaccess or membership)
  36. Password Protected page not asking for a password
  37. I would like to password protect my entire WordPress site (ip validated), except for one page
  38. Password protection for page template
  39. how to remotely check a username / password from within a plugin
  40. Password changed [duplicate]
  41. Enable Update button only when password is shown strong
  42. Adding parameters to password reset key
  43. Custom password form allows unlock two posts with the same password
  44. Generating the password reset link automatically
  45. password recovery key is invalid on custom reset
  46. Password Protected Post is invisible until you login
  47. Send password to user instead of reset password link
  48. Protect Passwords in wp_users with stronger protection than MD5
  49. Custom form for password protected page
  50. How secure is a wp-config file?
  51. How to Remove or Deactivate “Application Passwords” in WordPress
  52. How to change “Reset Password” text on submit button
  53. How to recover password from a user
  54. resend user login & password with custom button
  55. How to show my wordpress admin username & password?
  56. Why does hashing a password result in different hashes, each time?
  57. Can’t alter $lostpassword_url
  58. current user’s password check
  59. lostpassword_redirect filter is not used
  60. How to read third party cookie to access password protected pages
  61. Ask logged in user to re-enter password to access page “x”
  62. Password Protect or IP to access under development WordPress site otherwise shown a placeholder page
  63. Password protected sites
  64. Password-protected page redirecting to frontpage when I enter the password
  65. 2 accounts under same email preventing me from loging in
  66. How would I create a Password Protected Page with Content on it?
  67. Site only for users authenticated by different PHP application
  68. Allow all reset password links within the past 24 hours to be valid and accepted
  69. WooCommerce Lost Password reset goes to 404
  70. I need help with wp_lostpassword, wp_register and wp_login_form
  71. Automatically change the page password for more than one page
  72. I can’t recover my password
  73. Frontend custom forgot password page
  74. Cannot get function.php code to work to remove Lost Password link on live site
  75. Problem with login / reset password links in users emails
  76. Password Protect content() on homepage
  77. Function called by password_reset action passed only 1 argument instead of 2 in PHP 7.2.11
  78. How to set password from frontend if have activation key and user login in url in wordpress?
  79. Allow users from my ASP.Net MVC site to access my private WordPress site
  80. How do I display the password field on the WordPress user registration screen?
  81. WordPress Protected Page Redirects to PDF
  82. Bypass a WordPress Password Protected Post or Page via a URL
  83. Custom page password recovery
  84. Can I use core passworded page/post functions outside of wp-login.php?
  85. Is it possible to display newly generated password after wp_generate_password()?
  86. Password protect wp-login.php
  87. forgot password
  88. Revise my keyword but still cannot login
  89. mysql update user’s password and activation key
  90. Is it possible to have users register without having a password?
  91. Password Protection for posts and pages [duplicate]
  92. Reset Password – change from name and email address. It stucks at admin. Want to change it to info
  93. WordPress reset password button not working
  94. check if post is set to “password protected”
  95. Override the default password length when creating or updating a user profile
  96. Why can’t I create an Application Password?
  97. FTP Password (not private key-value pair) for EC2 Instance
  98. How to Disable Pre-population of Password on Password Reset
  99. Bypass a WordPress Password Protected Page via url
  100. My WordPress password for admin account is changing automatically

Leave a Comment