Feat: Send new token on changePassword

louislam · Dec 12, 2023 · e23d203 · e23d203
1 parent d7b3f69
commit e23d203
Show file tree

Hide file tree

Showing 3 changed files with 13 additions and 2 deletions.
diff --git a/server/model/user.js b/server/model/user.js
@@ -25,8 +25,14 @@ class User extends BeanModel {
      * @returns {Promise<void>}
      */
     async resetPassword(newPassword) {
-        await User.resetPassword(this.id, newPassword);
-        this.password = newPassword;
+        const hashedPassword = passwordHash.generate(newPassword);
+
+        await R.exec("UPDATE `user` SET password = ? WHERE id = ? ", [
+            hashedPassword,
+            this.id
+        ]);
+
+        this.password = hashedPassword;
     }
 
     /**

diff --git a/server/server.js b/server/server.js
@@ -1268,6 +1268,7 @@ let needSetup = false;
 
                 callback({
                     ok: true,
+                    token: User.createJWT(user, server.jwtSecret),
                     msg: "successAuthChangePassword",
                     msgi18n: true,
                 });

diff --git a/src/components/settings/Security.vue b/src/components/settings/Security.vue
@@ -171,6 +171,10 @@ export default {
                             this.password.currentPassword = "";
                             this.password.newPassword = "";
                             this.password.repeatNewPassword = "";
+
+                            // Update token of the current session
+                            this.$root.storage().token = res.token;
+                            this.$root.socket.token = res.token;
                         }
                     });
             }