pictureFrame-webApp

football2801/pictureFrame-webApp

Fork 0

Commit Graph

Author	SHA1	Message	Date
football2801	2adb07518c	feat(account): change-password endpoint + Settings modal CI / test (push) Has been cancelled Details PATCH /api/user/password — verifies the current password, enforces 8-char minimum on the new one, and rehashes via the configured password hasher. Returns 204 on success, 422 with an `error` body on every validation failure (wrong current, too-short new, missing fields). Settings adds a "Change password" link under the Account section that opens a modal with current/new/confirm fields and posts to the new endpoint. Confirm-mismatch and submit-disabled wiring is client-side; backend errors surface inline. Tests: 4 new controller tests cover success, wrong-current, short-new, and missing-fields; success path also re-fetches the user and checks the hash actually changed.	2026-05-09 15:25:54 -04:00

Author

SHA1

Message

Date

football2801

2adb07518c

feat(account): change-password endpoint + Settings modal

CI / test (push) Has been cancelled

Details

PATCH /api/user/password — verifies the current password, enforces
8-char minimum on the new one, and rehashes via the configured
password hasher. Returns 204 on success, 422 with an `error` body
on every validation failure (wrong current, too-short new, missing
fields).

Settings adds a "Change password" link under the Account section
that opens a modal with current/new/confirm fields and posts to the
new endpoint. Confirm-mismatch and submit-disabled wiring is
client-side; backend errors surface inline.

Tests: 4 new controller tests cover success, wrong-current,
short-new, and missing-fields; success path also re-fetches the
user and checks the hash actually changed.

2026-05-09 15:25:54 -04:00

1 Commits