lemmy/crates/api/src/local_user/change_password.rs

use crate::Perform;
use actix_web::web::Data;
use bcrypt::verify;
use lemmy_api_common::{
  blocking,
  get_local_user_view_from_jwt,
  password_length_check,
  person::{ChangePassword, LoginResponse},
};
use lemmy_db_schema::source::local_user::LocalUser;
use lemmy_utils::{claims::Claims, ConnectionId, LemmyError};
use lemmy_websocket::LemmyContext;

#[async_trait::async_trait(?Send)]
impl Perform for ChangePassword {
  type Response = LoginResponse;

  #[tracing::instrument(skip(self, context, _websocket_id))]
  async fn perform(
    &self,
    context: &Data<LemmyContext>,
    _websocket_id: Option<ConnectionId>,
  ) -> Result<LoginResponse, LemmyError> {
    let data: &ChangePassword = self;
    let local_user_view =
      get_local_user_view_from_jwt(data.auth.as_ref(), context.pool(), context.secret()).await?;

    password_length_check(&data.new_password)?;

    // Make sure passwords match
    if data.new_password != data.new_password_verify {
      return Err(LemmyError::from_message("passwords_dont_match"));
    }

    // Check the old password
    let valid: bool = verify(
      &data.old_password,
      &local_user_view.local_user.password_encrypted,
    )
    .unwrap_or(false);
    if !valid {
      return Err(LemmyError::from_message("password_incorrect"));
    }

    let local_user_id = local_user_view.local_user.id;
    let new_password = data.new_password.to_owned();
    let updated_local_user = blocking(context.pool(), move |conn| {
      LocalUser::update_password(conn, local_user_id, &new_password)
    })
    .await??;

    // Return the jwt
    Ok(LoginResponse {
      jwt: Some(
        Claims::jwt(
          updated_local_user.id.0,
          &context.secret().jwt_secret,
          &context.settings().hostname,
        )?
        .into(),
      ),
      verify_email_sent: false,
      registration_created: false,
    })
  }
}
Split apart api files (#2216) 2022-04-13 18:12:25 +00:00			`use crate::Perform;`
			`use actix_web::web::Data;`
			`use bcrypt::verify;`
			`use lemmy_api_common::{`
			`blocking,`
			`get_local_user_view_from_jwt,`
			`password_length_check,`
			`person::{ChangePassword, LoginResponse},`
			`};`
			`use lemmy_db_schema::source::local_user::LocalUser;`
			`use lemmy_utils::{claims::Claims, ConnectionId, LemmyError};`
			`use lemmy_websocket::LemmyContext;`

			`#[async_trait::async_trait(?Send)]`
			`impl Perform for ChangePassword {`
			`type Response = LoginResponse;`

			`#[tracing::instrument(skip(self, context, _websocket_id))]`
			`async fn perform(`
			`&self,`
			`context: &Data<LemmyContext>,`
			`_websocket_id: Option<ConnectionId>,`
			`) -> Result<LoginResponse, LemmyError> {`
			`let data: &ChangePassword = self;`
			`let local_user_view =`
			`get_local_user_view_from_jwt(data.auth.as_ref(), context.pool(), context.secret()).await?;`

			`password_length_check(&data.new_password)?;`

			`// Make sure passwords match`
			`if data.new_password != data.new_password_verify {`
			`return Err(LemmyError::from_message("passwords_dont_match"));`
			`}`

			`// Check the old password`
			`let valid: bool = verify(`
			`&data.old_password,`
			`&local_user_view.local_user.password_encrypted,`
			`)`
			`.unwrap_or(false);`
			`if !valid {`
			`return Err(LemmyError::from_message("password_incorrect"));`
			`}`

			`let local_user_id = local_user_view.local_user.id;`
			`let new_password = data.new_password.to_owned();`
			`let updated_local_user = blocking(context.pool(), move \|conn\| {`
			`LocalUser::update_password(conn, local_user_id, &new_password)`
			`})`
			`.await??;`

			`// Return the jwt`
			`Ok(LoginResponse {`
			`jwt: Some(`
			`Claims::jwt(`
			`updated_local_user.id.0,`
			`&context.secret().jwt_secret,`
			`&context.settings().hostname,`
			`)?`
			`.into(),`
			`),`
			`verify_email_sent: false,`
			`registration_created: false,`
			`})`
			`}`
			`}`