Add `change password` UI + API.

The protocol here re-checks the caller's password, as a "I left myself logged in" anti-pranking check.
author: Owen Jacobson <owen@grimoire.ca> 2024-10-29 23:29:22 -0400
committer: Owen Jacobson <owen@grimoire.ca> 2024-10-29 23:29:22 -0400
commit: 66d3fcf2e22f057bacce8d97d43a13c1c5a9ad09 (patch)
tree: 60995943e14a6568cf2b37622ce97df121865a6d /src/login/repo.rs
parent: e328d33fc7d6a0f2e3d260d8bddee3ef633318eb (diff)
1 files changed, 23 insertions, 0 deletions
diff --git a/src/login/repo.rs b/src/login/repo.rs
index 611edd6..a972304 100644
--- a/src/login/repo.rs
+++ b/src/login/repo.rs
@@ -58,6 +58,29 @@ impl<'c> Logins<'c> {
         Ok(login)
     }
 
+    pub async fn set_password(
+        &mut self,
+        login: &History,
+        to: &StoredHash,
+    ) -> Result<(), sqlx::Error> {
+        let login = login.id();
+
+        sqlx::query_scalar!(
+            r#"
+                update login
+                set password_hash = $1
+                where id = $2
+                returning id as "id: Id"
+            "#,
+            to,
+            login,
+        )
+        .fetch_one(&mut *self.0)
+        .await?;
+
+        Ok(())
+    }
+
     pub async fn all(&mut self, resume_at: ResumePoint) -> Result<Vec<History>, LoadError> {
         let logins = sqlx::query!(
             r#"
author	Owen Jacobson <owen@grimoire.ca>	2024-10-29 23:29:22 -0400
committer	Owen Jacobson <owen@grimoire.ca>	2024-10-29 23:29:22 -0400
commit	66d3fcf2e22f057bacce8d97d43a13c1c5a9ad09 (patch)
tree	60995943e14a6568cf2b37622ce97df121865a6d /src/login/repo.rs
parent	e328d33fc7d6a0f2e3d260d8bddee3ef633318eb (diff)