Merge branch 'documenso:feat/refresh' into feat/refresh

2025-11-13 00:03:33 +10:00 · 2023-10-04 13:00:52 +05:30
parent f637381198 693249916d
commit 4cc34ec50a
13 changed files with 92 additions and 36 deletions
--- a/packages/lib/server-only/user/update-password.ts
+++ b/packages/lib/server-only/user/update-password.ts
@ -7,9 +7,14 @@ import { SALT_ROUNDS } from '../../constants/auth';
 export type UpdatePasswordOptions = {
  userId: number;
  password: string;
+  currentPassword: string;
 };

-export const updatePassword = async ({ userId, password }: UpdatePasswordOptions) => {
+export const updatePassword = async ({
+  userId,
+  password,
+  currentPassword,
+}: UpdatePasswordOptions) => {
  // Existence check
  const user = await prisma.user.findFirstOrThrow({
    where: {
@ -17,23 +22,29 @@ export const updatePassword = async ({ userId, password }: UpdatePasswordOptions
    },
  });

-  const hashedPassword = await hash(password, SALT_ROUNDS);
-
-  if (user.password) {
-    // Compare the new password with the old password
-    const isSamePassword = await compare(password, user.password);
-
-    if (isSamePassword) {
-      throw new Error('Your new password cannot be the same as your old password.');
-    }
+  if (!user.password) {
+    throw new Error('User has no password');
  }

+  const isCurrentPasswordValid = await compare(currentPassword, user.password);
+  if (!isCurrentPasswordValid) {
+    throw new Error('Current password is incorrect.');
+  }
+
+  // Compare the new password with the old password
+  const isSamePassword = await compare(password, user.password);
+  if (isSamePassword) {
+    throw new Error('Your new password cannot be the same as your old password.');
+  }
+
+  const hashedNewPassword = await hash(password, SALT_ROUNDS);
+
  const updatedUser = await prisma.user.update({
    where: {
      id: userId,
    },
    data: {
-      password: hashedPassword,
+      password: hashedNewPassword,
    },
  });

--- a/packages/trpc/server/profile-router/router.ts
+++ b/packages/trpc/server/profile-router/router.ts
@ -40,11 +40,12 @@ export const profileRouter = router({
    .input(ZUpdatePasswordMutationSchema)
    .mutation(async ({ input, ctx }) => {
      try {
-        const { password } = input;
+        const { password, currentPassword } = input;

        return await updatePassword({
          userId: ctx.user.id,
          password,
+          currentPassword,
        });
      } catch (err) {
        let message =
--- a/packages/trpc/server/profile-router/schema.ts
+++ b/packages/trpc/server/profile-router/schema.ts
@ -6,6 +6,7 @@ export const ZUpdateProfileMutationSchema = z.object({
 });

 export const ZUpdatePasswordMutationSchema = z.object({
+  currentPassword: z.string().min(6),
  password: z.string().min(6),
 });