Stop returning body data from `POST /api/auth/login`.

As with `/api/setup`, the response was an ad-hoc choice, which we are not using and which constrains future development just by existing.
author: Owen Jacobson <owen@grimoire.ca> 2025-08-24 03:48:17 -0400
committer: Owen Jacobson <owen@grimoire.ca> 2025-08-24 04:51:24 -0400
commit: 4eb63b8adda4559df3dadcf721e2bb0d1f65a01f (patch)
tree: 4fc62e30770ec84be431a5dabc2aead3eaad88f9 /src/user/handlers/password
parent: 1a0ee4af6538b5486d35730d480d00ca4d9edafb (diff)
1 files changed, 6 insertions, 1 deletions
diff --git a/src/user/handlers/password/test.rs b/src/user/handlers/password/test.rs
index 42e41d8..278d27b 100644
--- a/src/user/handlers/password/test.rs
+++ b/src/user/handlers/password/test.rs
@@ -58,10 +58,15 @@ async fn password_change() {
     assert!(matches!(login_err, LoginError::Rejected));
 
     // Verify that our new password is valid
-    let (login, _) = app
+    let secret = app
         .tokens()
         .login(&name, &to, &fixtures::now())
         .await
         .expect("logging in with the new password should succeed");
+    let (_, login) = app
+        .tokens()
+        .validate(&secret, &fixtures::now())
+        .await
+        .expect("validating a newly-issued token secret succeeds");
     assert_eq!(identity.user, login);
 }
author	Owen Jacobson <owen@grimoire.ca>	2025-08-24 03:48:17 -0400
committer	Owen Jacobson <owen@grimoire.ca>	2025-08-24 04:51:24 -0400
commit	4eb63b8adda4559df3dadcf721e2bb0d1f65a01f (patch)
tree	4fc62e30770ec84be431a5dabc2aead3eaad88f9 /src/user/handlers/password
parent	1a0ee4af6538b5486d35730d480d00ca4d9edafb (diff)