Asp.net core 使用具有哈希密码和密码的数据创建种子_Asp.net Core_Entity Framework Core_Passwords_Ef Core 3.1_Password Hash

Asp.net core 使用具有哈希密码和密码的数据创建种子

asp.net-core entity-framework-core passwords

Asp.net core 使用具有哈希密码和密码的数据创建种子,asp.net-core,entity-framework-core,passwords,ef-core-3.1,password-hash,Asp.net Core,Entity Framework Core,Passwords,Ef Core 3.1,Password Hash,我有一个表“admins”，我想将数据植入其中。该表有一个password（nvarchar（128））字段和一个password_salt（varbinary（1024））字段模型是这样的： public string Password { get; set; } public byte[] PasswordSalt { get; set; } public Admins Register(Admins admin) { CreatePassword

我有一个表“admins”，我想将数据植入其中。该表有一个password（nvarchar（128））字段和一个password_salt（varbinary（1024））字段

模型是这样的：

public string Password { get; set; }
public byte[] PasswordSalt { get; set; }

public Admins Register(Admins admin)
        {
            CreatePasswordHash(admin.Password, out string passwordHash, out Byte[] passwordSalt);
            admin.Password = passwordHash;
            admin.PasswordSalt = passwordSalt;
            //rest of code
        }

private void CreatePasswordHash(string password, out string passwordHash, out Byte[] passwordSalt)
        {
            using (var hmac = new System.Security.Cryptography.HMACSHA512())
            {
                Byte[] buffer = hmac.ComputeHash(Encoding.Unicode.GetBytes(password));
                passwordHash = Encoding.Unicode.GetString(buffer);
                passwordSalt = hmac.Key;
            }
        }

当我创建一个新管理员时，我会创建一个密码哈希和一个密码盐，如下所示：

public string Password { get; set; }
public byte[] PasswordSalt { get; set; }

public Admins Register(Admins admin)
        {
            CreatePasswordHash(admin.Password, out string passwordHash, out Byte[] passwordSalt);
            admin.Password = passwordHash;
            admin.PasswordSalt = passwordSalt;
            //rest of code
        }

private void CreatePasswordHash(string password, out string passwordHash, out Byte[] passwordSalt)
        {
            using (var hmac = new System.Security.Cryptography.HMACSHA512())
            {
                Byte[] buffer = hmac.ComputeHash(Encoding.Unicode.GetBytes(password));
                passwordHash = Encoding.Unicode.GetString(buffer);
                passwordSalt = hmac.Key;
            }
        }

我怎样才能在这样的桌子上播种？我应该在密码字段中输入什么？它是一个字节[]，我不知道如何获取它并将其放入我的

migrationBuilder.InsertData（）

方法中。

您可以使用安全的RandomNumberGenerator生成128位salt，并使用keydrivation.Pbkdf2散列密码，请参考以下示例：

创建管理类并添加相关属性：

 public class Admin
 {
     [Key]
     public int ID { get; set; }
     public string AdminName { get; set; }       
     public string Password { get; set; }
     public byte[] PasswordSalt { get; set; }
 }

创建ModelBuilderExtensions：添加初始数据并散列密码

 public static class ModelBuilderExtensions
 {
     public static void Seed(this ModelBuilder modelBuilder)
     {
         modelBuilder.Entity<Admin>().HasData(
             CreateAdmin(1,"Dillion", "Password01"),
             CreateAdmin(2,"Tom", "Password02"),
             CreateAdmin(3, "David", "Password03")
         ); 
     }

     public static Admin CreateAdmin(int id, string name, string password)
     {
         var admin = new Admin();

         byte[] salt = new byte[128 / 8];
         using (var rng = RandomNumberGenerator.Create())
         {
             rng.GetBytes(salt);
         }

         admin.PasswordSalt = salt;
         //Console.WriteLine($"Salt: {Convert.ToBase64String(salt)}");

         // derive a 256-bit subkey (use HMACSHA1 with 10,000 iterations)
         string hashed = Convert.ToBase64String(KeyDerivation.Pbkdf2(
             password: password,
             salt: salt,
             prf: KeyDerivationPrf.HMACSHA1,
             iterationCount: 10000,
             numBytesRequested: 256 / 8));
         admin.Password = hashed;
         admin.AdminName = name;
         admin.ID = id;
         return admin;
     }
 }

检查管理表：

有关详细信息，请查看以下文章：