From 086af87ff2370f00b8b4999bf3821387dc316bd3 Mon Sep 17 00:00:00 2001 From: Oleg Drozdovich Date: Sun, 4 Feb 2024 21:34:10 +0100 Subject: [PATCH] feat(users): update change user password validation for admin --- http-requests/users/requests.http | 18 ++++++++++++++++++ .../users/src/methods/user/change-password.ts | 15 +++++++++++++-- 2 files changed, 31 insertions(+), 2 deletions(-) diff --git a/http-requests/users/requests.http b/http-requests/users/requests.http index ef4684c0..4e4cf683 100644 --- a/http-requests/users/requests.http +++ b/http-requests/users/requests.http @@ -21,3 +21,21 @@ Authorization: Bearer admintokenooooooooooooooooooooon } } } + +### Change user password as an application admin +POST http://127.0.0.1:3000 +Accept: application/json +Content-Type: application/json +## Admin token +Authorization: Bearer admintokenooooooooooooooooooooon + +{ + "id": "1", + "method": "users.user.change-password", + "params": { + "userId": "68827b31-33e9-45b5-bf9f-8823b993d0ef", + "newPassword": "123456789!A", + "allowedByAdmin": true + } +} + diff --git a/microservices/users/src/methods/user/change-password.ts b/microservices/users/src/methods/user/change-password.ts index 7ee0d384..9d7e6039 100644 --- a/microservices/users/src/methods/user/change-password.ts +++ b/microservices/users/src/methods/user/change-password.ts @@ -1,5 +1,6 @@ import { Endpoint, IsType, IsUndefinable } from '@lomray/microservice-helpers'; import { IsBoolean, IsEnum, IsNotEmpty, IsString, ValidateIf } from 'class-validator'; +import { JSONSchema } from 'class-validator-jsonschema'; import { getCustomRepository, getRepository } from 'typeorm'; import ConfirmCode from '@entities/confirm-code'; import User from '@entities/user'; @@ -23,18 +24,28 @@ class ChangePasswordInput { @IsNotEmpty() newPassword: string; + @JSONSchema({ + description: 'Skip if change password has allowed by admin', + }) @IsString() @IsNotEmpty() - @ValidateIf(({ confirmCode, oldPassword }) => !confirmCode || oldPassword) + @ValidateIf( + ({ confirmCode, oldPassword, allowByAdmin }) => !allowByAdmin && (!confirmCode || oldPassword), + ) oldPassword?: string; @IsEnum(ConfirmBy) @ValidateIf(({ confirmCode }) => confirmCode) confirmBy?: ConfirmBy; + @JSONSchema({ + description: 'Skip if change password has allowed by admin', + }) @IsType(['string', 'number']) @IsNotEmpty() - @ValidateIf(({ confirmCode, oldPassword }) => !oldPassword || confirmCode) + @ValidateIf( + ({ confirmCode, oldPassword, allowByAdmin }) => !allowByAdmin && (!oldPassword || confirmCode), + ) confirmCode?: string | number; @IsBoolean()