/**
* 验证原密码是否正确
*
* @param user
* @param oldPwd
* @return
*/
public boolean checkPassword(User user, String oldPassword) {
byte[] salt = Encodes.decodeHex(user.getSalt());
byte[] hashPassword = Digests.sha1(oldPassword.getBytes(), salt, HASH_INTERATIONS);
if (user.getPassword().equals(Encodes.encodeHex(hashPassword))) {
return true;
} else {
return false;
}
}
