Add schema and separate endpoint to update a user password

2026-02-01 23:55:58 -05:00 · 2017-02-07 11:27:13 +00:00
parent ac48e4c944
commit 69b1007c33
3 changed files with 60 additions and 3 deletions
--- a/app/schemas.py
+++ b/app/schemas.py
@@ -140,6 +140,20 @@ class UserUpdateAttributeSchema(BaseSchema):
                raise ValidationError('Unknown field name {}'.format(key))


+class UserUpdatePasswordSchema(BaseSchema):
+
+    class Meta:
+        model = models.User
+        only = ('password')
+        strict = True
+
+    @validates_schema(pass_original=True)
+    def check_unknown_fields(self, data, original_data):
+        for key in original_data:
+            if key not in self.fields:
+                raise ValidationError('Unknown field name {}'.format(key))
+
+
 class ProviderDetailsSchema(BaseSchema):
    class Meta:
        model = models.ProviderDetails
@@ -560,6 +574,7 @@ class UnarchivedTemplateSchema(BaseSchema):
 user_schema = UserSchema()
 user_schema_load_json = UserSchema(load_json=True)
 user_update_schema_load_json = UserUpdateAttributeSchema(load_json=True, partial=True)
+user_update_password_schema_load_json = UserUpdatePasswordSchema(load_json=True, partial=True)
 service_schema = ServiceSchema()
 service_schema_load_json = ServiceSchema(load_json=True)
 detailed_service_schema = DetailedServiceSchema()
--- a/app/user/rest.py
+++ b/app/user/rest.py
@@ -11,7 +11,8 @@ from app.dao.users_dao import (
    reset_failed_login_count,
    get_user_by_email,
    create_secret_code,
-    save_user_attribute
+    save_user_attribute,
+    update_user_password
 )
 from app.dao.permissions_dao import permission_dao
 from app.dao.services_dao import dao_fetch_service_by_id
@@ -27,7 +28,8 @@ from app.schemas import (
    request_verify_code_schema,
    permission_schema,
    user_schema_load_json,
-    user_update_schema_load_json
+    user_update_schema_load_json,
+    user_update_password_schema_load_json
 )

 from app.errors import (
@@ -304,6 +306,19 @@ def send_user_reset_password():
    return jsonify({}), 204


+@user.route('/<uuid:user_id>/update-password', methods=['POST'])
+def update_password(user_id):
+    user = get_user_by_id(user_id=user_id)
+    req_json = request.get_json()
+    pwd = req_json.get('_password')
+    update_dct, errors = user_update_password_schema_load_json.load(req_json)
+    if errors:
+        raise InvalidRequest(errors, status_code=400)
+
+    update_user_password(user, pwd)
+    return jsonify(data=user_schema.dump(user).data), 200
+
+
 def _create_reset_password_url(email):
    data = json.dumps({'email': email, 'created_at': str(datetime.utcnow())})
    url = '/new-password/'