Implemented password hashing !

1 files changed, 5 insertions, 2 deletions

diff --git a/Software/Visual_Studio/MachineStudio/Tango.MachineStudio.UpdateService/MachineStudioUpdateService.svc.cs b/Software/Visual_Studio/MachineStudio/Tango.MachineStudio.UpdateService/MachineStudioUpdateService.svc.cs
index 907dcf757..9b03cda30 100644
--- a/Software/Visual_Studio/MachineStudio/Tango.MachineStudio.UpdateService/MachineStudioUpdateService.svc.cs
+++ b/Software/Visual_Studio/MachineStudio/Tango.MachineStudio.UpdateService/MachineStudioUpdateService.svc.cs
@@ -58,7 +58,8 @@ namespace Tango.MachineStudio.UpdateService
                     db.UsersRoles.ToList();
                     db.RolesPermissions.ToList();
 
-                    var user = db.Users.SingleOrDefault(x => x.Email.ToLower() == request.Email.ToLower() && x.Password == request.Password);
+                    String hash = User.GetPasswordHash(request.Password);
+                    var user = db.Users.SingleOrDefault(x => x.Email.ToLower() == request.Email.ToLower() && x.Password == hash);
 
                     if (user != null && user.HasPermission(Permissions.RunMachineStudio))
                     {
@@ -107,7 +108,9 @@ namespace Tango.MachineStudio.UpdateService
                     db.UsersRoles.ToList();
                     db.RolesPermissions.ToList();
 
-                    var user = db.Users.SingleOrDefault(x => x.Email.ToLower() == request.Email.ToLower() && x.Password == request.Password);
+                    String hash = User.GetPasswordHash(request.Password);
+
+                    var user = db.Users.SingleOrDefault(x => x.Email.ToLower() == request.Email.ToLower() && x.Password == hash);
 
                     if (user != null && user.HasPermission(Permissions.PublishMachineStudioVersion))
                     {