feat(web): change password (#7676)

Add the ability for users to change their password from their user settings, without requiring them to use the reset password workflow. User's are required to create a elevated session in order to change their password. Users may not change their password to their current password. The user's current password is required for the password change. Users must follow any established password policies. Administrators are able to turn this feature off. Closes #3548
author: Brynn Crowley <littlehill723@gmail.com> 2025-03-06 08:24:19 +0000
committer: GitHub <noreply@github.com> 2025-03-06 08:24:19 +0000
commit: f4abcb34b757e40467344ffdd7cec9f77f46a227 (patch)
tree: f3cc73da2ebaa978186f6f470d5bd27b279f6a96 /internal/suites/action_change_password.go
parent: 5b52a9d4b18b5a07b1edb7403b6dc90b8d5c628d (diff)
1 files changed, 82 insertions, 0 deletions
diff --git a/internal/suites/action_change_password.go b/internal/suites/action_change_password.go
new file mode 100644
index 000000000..37b525b40
--- /dev/null
+++ b/internal/suites/action_change_password.go
@@ -0,0 +1,82 @@
+package suites
+
+import (
+	"testing"
+
+	"github.com/go-rod/rod"
+	"github.com/stretchr/testify/require"
+)
+
+func (rs *RodSession) doChangePassword(t *testing.T, page *rod.Page, oldPassword, newPassword1, newPassword2 string) {
+	t.Helper()
+
+	require.NoError(t, rs.WaitElementLocatedByID(t, page, "change-password-button").Click("left", 1))
+
+	rs.doMaybeVerifyIdentity(t, page)
+
+	oldPasswordInput := rs.WaitElementLocatedByID(t, page, "old-password")
+	newPasswordInput := rs.WaitElementLocatedByID(t, page, "new-password")
+	repeatNewPasswordInput := rs.WaitElementLocatedByID(t, page, "repeat-new-password")
+
+	require.NoError(t, oldPasswordInput.Type(rs.toInputs(oldPassword)...))
+	require.NoError(t, newPasswordInput.Type(rs.toInputs(newPassword1)...))
+	require.NoError(t, repeatNewPasswordInput.Type(rs.toInputs(newPassword2)...))
+
+	require.NoError(t, rs.WaitElementLocatedByID(t, page, "password-change-dialog-submit").Click("left", 1))
+	rs.verifyNotificationDisplayed(t, page, "Password changed successfully")
+}
+
+func (rs *RodSession) doMustChangePasswordExistingPassword(t *testing.T, page *rod.Page, password string) {
+	require.NoError(t, rs.WaitElementLocatedByID(t, page, "change-password-button").Click("left", 1))
+
+	rs.doMaybeVerifyIdentity(t, page)
+	t.Helper()
+
+	oldPasswordInput := rs.WaitElementLocatedByID(t, page, "old-password")
+	newPasswordInput := rs.WaitElementLocatedByID(t, page, "new-password")
+	repeatNewPasswordInput := rs.WaitElementLocatedByID(t, page, "repeat-new-password")
+
+	require.NoError(t, oldPasswordInput.Type(rs.toInputs(password)...))
+	require.NoError(t, newPasswordInput.Type(rs.toInputs(password)...))
+	require.NoError(t, repeatNewPasswordInput.Type(rs.toInputs(password)...))
+
+	require.NoError(t, rs.WaitElementLocatedByID(t, page, "password-change-dialog-submit").Click("left", 1))
+	rs.verifyNotificationDisplayed(t, page, "Your supplied password does not meet the password policy requirements")
+}
+
+func (rs *RodSession) doMustChangePasswordWrongExistingPassword(t *testing.T, page *rod.Page, oldPassword, newPassword1 string) {
+	t.Helper()
+
+	require.NoError(t, rs.WaitElementLocatedByID(t, page, "change-password-button").Click("left", 1))
+
+	rs.doMaybeVerifyIdentity(t, page)
+
+	oldPasswordInput := rs.WaitElementLocatedByID(t, page, "old-password")
+	newPasswordInput := rs.WaitElementLocatedByID(t, page, "new-password")
+	repeatNewPasswordInput := rs.WaitElementLocatedByID(t, page, "repeat-new-password")
+
+	require.NoError(t, oldPasswordInput.Type(rs.toInputs(oldPassword)...))
+	require.NoError(t, newPasswordInput.Type(rs.toInputs(newPassword1)...))
+	require.NoError(t, repeatNewPasswordInput.Type(rs.toInputs(newPassword1)...))
+
+	require.NoError(t, rs.WaitElementLocatedByID(t, page, "password-change-dialog-submit").Click("left", 1))
+	rs.verifyNotificationDisplayed(t, page, "Incorrect password")
+}
+
+func (rs *RodSession) doMustChangePasswordMustMatch(t *testing.T, page *rod.Page, oldPassword, newPassword1, newPassword2 string) {
+	require.NoError(t, rs.WaitElementLocatedByID(t, page, "change-password-button").Click("left", 1))
+
+	rs.doMaybeVerifyIdentity(t, page)
+	t.Helper()
+
+	oldPasswordInput := rs.WaitElementLocatedByID(t, page, "old-password")
+	newPasswordInput := rs.WaitElementLocatedByID(t, page, "new-password")
+	repeatNewPasswordInput := rs.WaitElementLocatedByID(t, page, "repeat-new-password")
+
+	require.NoError(t, oldPasswordInput.Type(rs.toInputs(oldPassword)...))
+	require.NoError(t, newPasswordInput.Type(rs.toInputs(newPassword1)...))
+	require.NoError(t, repeatNewPasswordInput.Type(rs.toInputs(newPassword2)...))
+
+	require.NoError(t, rs.WaitElementLocatedByID(t, page, "password-change-dialog-submit").Click("left", 1))
+	rs.verifyNotificationDisplayed(t, page, "Passwords do not match")
+}
author	Brynn Crowley <littlehill723@gmail.com>	2025-03-06 08:24:19 +0000
committer	GitHub <noreply@github.com>	2025-03-06 08:24:19 +0000
commit	f4abcb34b757e40467344ffdd7cec9f77f46a227 (patch)
tree	f3cc73da2ebaa978186f6f470d5bd27b279f6a96 /internal/suites/action_change_password.go
parent	5b52a9d4b18b5a07b1edb7403b6dc90b8d5c628d (diff)