Asp.net core 使用具有哈希密码和密码的数据创建种子
我有一个表“admins”,我想将数据植入其中。该表有一个password(nvarchar(128))字段和一个password_salt(varbinary(1024))字段 模型是这样的:Asp.net core 使用具有哈希密码和密码的数据创建种子,asp.net-core,entity-framework-core,passwords,ef-core-3.1,password-hash,Asp.net Core,Entity Framework Core,Passwords,Ef Core 3.1,Password Hash,我有一个表“admins”,我想将数据植入其中。该表有一个password(nvarchar(128))字段和一个password_salt(varbinary(1024))字段 模型是这样的: public string Password { get; set; } public byte[] PasswordSalt { get; set; } public Admins Register(Admins admin) { CreatePassword
public string Password { get; set; }
public byte[] PasswordSalt { get; set; }
public Admins Register(Admins admin)
{
CreatePasswordHash(admin.Password, out string passwordHash, out Byte[] passwordSalt);
admin.Password = passwordHash;
admin.PasswordSalt = passwordSalt;
//rest of code
}
private void CreatePasswordHash(string password, out string passwordHash, out Byte[] passwordSalt)
{
using (var hmac = new System.Security.Cryptography.HMACSHA512())
{
Byte[] buffer = hmac.ComputeHash(Encoding.Unicode.GetBytes(password));
passwordHash = Encoding.Unicode.GetString(buffer);
passwordSalt = hmac.Key;
}
}
当我创建一个新管理员时,我会创建一个密码哈希和一个密码盐,如下所示:
public string Password { get; set; }
public byte[] PasswordSalt { get; set; }
public Admins Register(Admins admin)
{
CreatePasswordHash(admin.Password, out string passwordHash, out Byte[] passwordSalt);
admin.Password = passwordHash;
admin.PasswordSalt = passwordSalt;
//rest of code
}
private void CreatePasswordHash(string password, out string passwordHash, out Byte[] passwordSalt)
{
using (var hmac = new System.Security.Cryptography.HMACSHA512())
{
Byte[] buffer = hmac.ComputeHash(Encoding.Unicode.GetBytes(password));
passwordHash = Encoding.Unicode.GetString(buffer);
passwordSalt = hmac.Key;
}
}
我怎样才能在这样的桌子上播种?我应该在密码字段中输入什么?它是一个字节[],我不知道如何获取它并将其放入我的
migrationBuilder.InsertData()
方法中。您可以使用安全的RandomNumberGenerator生成128位salt,并使用keydrivation.Pbkdf2散列密码,请参考以下示例:
public class Admin
{
[Key]
public int ID { get; set; }
public string AdminName { get; set; }
public string Password { get; set; }
public byte[] PasswordSalt { get; set; }
}
public static class ModelBuilderExtensions
{
public static void Seed(this ModelBuilder modelBuilder)
{
modelBuilder.Entity<Admin>().HasData(
CreateAdmin(1,"Dillion", "Password01"),
CreateAdmin(2,"Tom", "Password02"),
CreateAdmin(3, "David", "Password03")
);
}
public static Admin CreateAdmin(int id, string name, string password)
{
var admin = new Admin();
byte[] salt = new byte[128 / 8];
using (var rng = RandomNumberGenerator.Create())
{
rng.GetBytes(salt);
}
admin.PasswordSalt = salt;
//Console.WriteLine($"Salt: {Convert.ToBase64String(salt)}");
// derive a 256-bit subkey (use HMACSHA1 with 10,000 iterations)
string hashed = Convert.ToBase64String(KeyDerivation.Pbkdf2(
password: password,
salt: salt,
prf: KeyDerivationPrf.HMACSHA1,
iterationCount: 10000,
numBytesRequested: 256 / 8));
admin.Password = hashed;
admin.AdminName = name;
admin.ID = id;
return admin;
}
}