pick username from auth - libeufin - Integration and sandbox testing for FinTech APIs and data formats

commit df649e65dedec5b28e0efb98b9a77fee0a83bde4
parent 8087940d06ffbdcde81f69213de5f9891be643a1
Author: MS <ms@taler.net>
Date:   Tue, 26 Jan 2021 15:04:03 +0100

pick username from auth

Diffstat:
M nexus/src/main/kotlin/tech/libeufin/nexus/server/JSON.kt  | 1 -
M nexus/src/main/kotlin/tech/libeufin/nexus/server/NexusServer.kt  | 5 -----

2 files changed, 0 insertions(+), 6 deletions(-)
diff --git a/nexus/src/main/kotlin/tech/libeufin/nexus/server/JSON.kt b/nexus/src/main/kotlin/tech/libeufin/nexus/server/JSON.kt
@@ -298,7 +298,6 @@ data class CreateUserRequest(
 )
 
 data class ChangeUserPassword(
-    val username: String,
     val newPassword: String
 )
 
diff --git a/nexus/src/main/kotlin/tech/libeufin/nexus/server/NexusServer.kt b/nexus/src/main/kotlin/tech/libeufin/nexus/server/NexusServer.kt
@@ -336,13 +336,8 @@ fun serverMain(dbName: String, host: String, port: Int) {
             // change a user's password
             post("/users/password") {
                 val body = call.receiveJson<ChangeUserPassword>()
-                val requestedUsername = requireValidResourceName(body.username)
                 transaction {
                     val user = authenticateRequest(call.request)
-                    if (requestedUsername != user.username) throw NexusError(
-                        HttpStatusCode.Unauthorized,
-                        "Insufficient rights to change password for '${requestedUsername}'"
-                    )
                     user.passwordHash = CryptoUtil.hashpw(body.newPassword)
                 }
                 call.respond(NexusMessage(message = "Password successfully changed"))

	libeufin Integration and sandbox testing for FinTech APIs and data formats
	Log \| Files \| Refs \| Submodules \| README \| LICENSE

M	nexus/src/main/kotlin/tech/libeufin/nexus/server/JSON.kt	\|	1	-
M	nexus/src/main/kotlin/tech/libeufin/nexus/server/NexusServer.kt	\|	5	-----