gtsocial-umbx

Unnamed repository; edit this file 'description' to name the repository.
Log | Files | Refs | README | LICENSE

password.go (1943B)

      1 // GoToSocial
      2 // Copyright (C) GoToSocial Authors admin@gotosocial.org
      3 // SPDX-License-Identifier: AGPL-3.0-or-later
      4 //
      5 // This program is free software: you can redistribute it and/or modify
      6 // it under the terms of the GNU Affero General Public License as published by
      7 // the Free Software Foundation, either version 3 of the License, or
      8 // (at your option) any later version.
      9 //
     10 // This program is distributed in the hope that it will be useful,
     11 // but WITHOUT ANY WARRANTY; without even the implied warranty of
     12 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
     13 // GNU Affero General Public License for more details.
     14 //
     15 // You should have received a copy of the GNU Affero General Public License
     16 // along with this program.  If not, see <http://www.gnu.org/licenses/>.
     17 
     18 package user
     19 
     20 import (
     21 	"context"
     22 
     23 	"github.com/superseriousbusiness/gotosocial/internal/gtserror"
     24 	"github.com/superseriousbusiness/gotosocial/internal/gtsmodel"
     25 	"github.com/superseriousbusiness/gotosocial/internal/validate"
     26 	"golang.org/x/crypto/bcrypt"
     27 )
     28 
     29 // PasswordChange processes a password change request for the given user.
     30 func (p *Processor) PasswordChange(ctx context.Context, user *gtsmodel.User, oldPassword string, newPassword string) gtserror.WithCode {
     31 	if err := bcrypt.CompareHashAndPassword([]byte(user.EncryptedPassword), []byte(oldPassword)); err != nil {
     32 		return gtserror.NewErrorUnauthorized(err, "old password was incorrect")
     33 	}
     34 
     35 	if err := validate.NewPassword(newPassword); err != nil {
     36 		return gtserror.NewErrorBadRequest(err, err.Error())
     37 	}
     38 
     39 	newPasswordHash, err := bcrypt.GenerateFromPassword([]byte(newPassword), bcrypt.DefaultCost)
     40 	if err != nil {
     41 		return gtserror.NewErrorInternalError(err, "error hashing password")
     42 	}
     43 
     44 	user.EncryptedPassword = string(newPasswordHash)
     45 
     46 	if err := p.state.DB.UpdateUser(ctx, user, "encrypted_password"); err != nil {
     47 		return gtserror.NewErrorInternalError(err)
     48 	}
     49 
     50 	return nil
     51 }