{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 叼着烟拽天下 的问题《ASP.NET Core add secondary password to IdentityUse》','https://www.manongdao.com/q-1053875.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I'm using ASP.NET Core 2.2 with EF Core. I have a User class which looks like this:
public class User : IdentityUser
{
public string FirstName { get; set; }
public string LastName { get; set; }
}
I would like to add a PIN property which will act as a secondary password for extra-secure operations. The user logs into the system, but if he wants to do something more special (like send money), he will be prompted to enter his PIN.
My question is what is the most easy way to hash a string, so I don't store the PIN in plain text in the db?
You can use the IPasswordHasher interface , when the user registers , you can create the password hash that will be stored in the database(PIN property) , when you need to verfiy , to hash the provided password/PIN and compare it to the stored hash .
For example , use DI to involve the extension :
To create a hashed password :
To verify :
You can also refer to document : Hash passwords in ASP.NET Core.