public User login(String name, String password) { if (name == null || password == null) { return null; } User user = userDAO.findByName(name); if (user != null && !user.isDisabled()) { boolean authenticated = encryptionService.authenticate(password, user.getPassword(), user.getSalt()); if (authenticated) { user.setLastLogin(Calendar.getInstance().getTime()); userDAO.update(user); return user; } } return null; }