anders-pub/markdown-hub
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add change password (Preferences > Change Password)

Browse Source
This commit is contained in:
Anders Holck
2026-05-25 08:44:15 +02:00
parent ed4d0b261f
commit 55a9ae816f
3 changed files with 55 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
internal/api/handlers.go
+28
View File
@@ -92,6 +92,34 @@ func (s *Server) handleLogout(w http.ResponseWriter, r *http.Request) {
writeJSON(w, 200, map[string]string{"status": "ok"})
}
func (s *Server) handleChangePassword(w http.ResponseWriter, r *http.Request) {
var req struct {
CurrentPassword string `json:"current_password"`
NewPassword string `json:"new_password"`
}
if err := decodeBody(r, &req); err != nil || req.CurrentPassword == "" || req.NewPassword == "" {
writeJSON(w, 400, map[string]string{"error": "current_password and new_password required"})
return
}
userID := getUserID(r)
var hash string
s.db.QueryRow("SELECT password_hash FROM users WHERE id = ?", userID).Scan(&hash)
if !auth.CheckPassword(hash, req.CurrentPassword) {
writeJSON(w, 401, map[string]string{"error": "current password is incorrect"})
return
}
newHash, err := auth.HashPassword(req.NewPassword)
if err != nil {
writeJSON(w, 500, map[string]string{"error": "failed to hash password"})
return
}
s.db.Exec("UPDATE users SET password_hash = ?, updated_at = datetime('now') WHERE id = ?", newHash, userID)
writeJSON(w, 200, map[string]string{"status": "password changed"})
}
// ─── Users ───────────────────────────────────────────────────────────────────
func (s *Server) handleCreateUser(w http.ResponseWriter, r *http.Request) {