diff options
| author |  tobi <31960611+tsmethurst@users.noreply.github.com> | 2023-02-22 16:05:26 +0100 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2023-02-22 16:05:26 +0100 |
| commit | b6fbdc66c1ce1ec61ebfb6fcc0351ea627a1d288 (patch) | |
| tree | c79d1107375597ab8a79045c80dd62dc95a204e7 /internal/processing/user/password.go | |
| parent | [bugfix] Remove initial storage cleanup (#1545) (diff) | |
| download | gotosocial-b6fbdc66c1ce1ec61ebfb6fcc0351ea627a1d288.tar.xz | |
[chore] Deinterface processor and subprocessors (#1501)
* [chore] Deinterface processor and subprocessors
* expose subprocessors via function calls
* missing license header
Diffstat (limited to 'internal/processing/user/password.go')
| -rw-r--r-- | internal/processing/user/password.go | 52 |
1 files changed, 52 insertions, 0 deletions
diff --git a/internal/processing/user/password.go b/internal/processing/user/password.go new file mode 100644 index 000000000..3475e005e --- /dev/null +++ b/internal/processing/user/password.go @@ -0,0 +1,52 @@ +/* + GoToSocial + Copyright (C) 2021-2023 GoToSocial Authors admin@gotosocial.org + + This program is free software: you can redistribute it and/or modify + it under the terms of the GNU Affero General Public License as published by + the Free Software Foundation, either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU Affero General Public License for more details. + + You should have received a copy of the GNU Affero General Public License + along with this program. If not, see <http://www.gnu.org/licenses/>. +*/ + +package user + +import ( + "context" + + "github.com/superseriousbusiness/gotosocial/internal/gtserror" + "github.com/superseriousbusiness/gotosocial/internal/gtsmodel" + "github.com/superseriousbusiness/gotosocial/internal/validate" + "golang.org/x/crypto/bcrypt" +) + +// PasswordChange processes a password change request for the given user. +func (p *Processor) PasswordChange(ctx context.Context, user *gtsmodel.User, oldPassword string, newPassword string) gtserror.WithCode { + if err := bcrypt.CompareHashAndPassword([]byte(user.EncryptedPassword), []byte(oldPassword)); err != nil { + return gtserror.NewErrorUnauthorized(err, "old password was incorrect") + } + + if err := validate.NewPassword(newPassword); err != nil { + return gtserror.NewErrorBadRequest(err, err.Error()) + } + + newPasswordHash, err := bcrypt.GenerateFromPassword([]byte(newPassword), bcrypt.DefaultCost) + if err != nil { + return gtserror.NewErrorInternalError(err, "error hashing password") + } + + user.EncryptedPassword = string(newPasswordHash) + + if err := p.db.UpdateUser(ctx, user, "encrypted_password"); err != nil { + return gtserror.NewErrorInternalError(err) + } + + return nil +} |