mirror of
https://github.com/jech/galene.git
synced 2024-11-09 10:15:58 +01:00
Implement form for changing passwords.
This commit is contained in:
parent
7643424bab
commit
39d11c2f48
3 changed files with 131 additions and 0 deletions
18
static/change-password.css
Normal file
18
static/change-password.css
Normal file
|
@ -0,0 +1,18 @@
|
|||
#errormessage {
|
||||
color: red;
|
||||
font-weight: bold;
|
||||
height: 12px;
|
||||
}
|
||||
|
||||
#message {
|
||||
font-weight: bold;
|
||||
height: 12px;
|
||||
}
|
||||
|
||||
label {
|
||||
display: block;
|
||||
}
|
||||
|
||||
#passwordform {
|
||||
padding: 2rem;
|
||||
}
|
33
static/change-password.html
Normal file
33
static/change-password.html
Normal file
|
@ -0,0 +1,33 @@
|
|||
<!DOCTYPE html>
|
||||
<html lang="en">
|
||||
<head>
|
||||
<title>Change password</title>
|
||||
<meta charset="utf-8">
|
||||
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
||||
<link rel="stylesheet" href="/common.css">
|
||||
<link rel="stylesheet" href="/change-password.css">
|
||||
<link rel="stylesheet" type="text/css" href="/galene.css"/>
|
||||
<link rel="author" href="https://www.irif.fr/~jch/"/>
|
||||
</head>
|
||||
|
||||
<body>
|
||||
|
||||
<h1 id="title" class="navbar-brand">Change password</h1>
|
||||
|
||||
<form id="passwordform">
|
||||
<label for="old1">Old password:</label>
|
||||
<input id="old1" type="password"/>
|
||||
<label for="old2">Old password (repeat):</label>
|
||||
<input id="old2" type="password"/>
|
||||
<label for="new">New password:</label>
|
||||
<input id="new" type="password"/>
|
||||
<input type="submit" value="Submit"/>
|
||||
</form>
|
||||
|
||||
<p id="message"></p>
|
||||
|
||||
<p id="errormessage"></p>
|
||||
|
||||
<script src="/change-password.js" defer></script>
|
||||
</body>
|
||||
</html>
|
80
static/change-password.js
Normal file
80
static/change-password.js
Normal file
|
@ -0,0 +1,80 @@
|
|||
// Copyright (c) 2020 by Juliusz Chroboczek.
|
||||
|
||||
// Permission is hereby granted, free of charge, to any person obtaining a copy
|
||||
// of this software and associated documentation files (the "Software"), to deal
|
||||
// in the Software without restriction, including without limitation the rights
|
||||
// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
|
||||
// copies of the Software, and to permit persons to whom the Software is
|
||||
// furnished to do so, subject to the following conditions:
|
||||
//
|
||||
// The above copyright notice and this permission notice shall be included in
|
||||
// all copies or substantial portions of the Software.
|
||||
//
|
||||
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
|
||||
// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
|
||||
// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
||||
// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
||||
// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
||||
// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
|
||||
// THE SOFTWARE.
|
||||
|
||||
'use strict';
|
||||
|
||||
document.getElementById('passwordform').onsubmit = async function(e) {
|
||||
e.preventDefault();
|
||||
|
||||
let parms = new URLSearchParams(window.location.search);
|
||||
let group = parms.get('group');
|
||||
if(!group) {
|
||||
displayError("Couldn't determine group");
|
||||
return;
|
||||
}
|
||||
let user = parms.get('username');
|
||||
if(!user) {
|
||||
displayError("Couldn't determine username");
|
||||
return;
|
||||
}
|
||||
|
||||
let old1 = document.getElementById('old1').value;
|
||||
let old2 = document.getElementById('old2').value;
|
||||
if(old1 !== old2) {
|
||||
displayError("Passwords don't match.");
|
||||
return;
|
||||
}
|
||||
|
||||
try {
|
||||
await doit(group, user, old1, document.getElementById('new').value);
|
||||
document.getElementById('old1').value = '';
|
||||
document.getElementById('old2').value = '';
|
||||
document.getElementById('new').value = '';
|
||||
displayError(null);
|
||||
document.getElementById('message').textContent =
|
||||
'Password successfully changed.';
|
||||
} catch(e) {
|
||||
displayError(e.toString());
|
||||
}
|
||||
}
|
||||
|
||||
async function doit(group, user, old, pw) {
|
||||
let creds = btoa(user + ":" + old);
|
||||
let r = await fetch(`/galene-api/0/.groups/${group}/.users/${user}/.password`,
|
||||
{
|
||||
method: 'POST',
|
||||
body: pw,
|
||||
credentials: 'omit',
|
||||
headers: {
|
||||
'Authorization': `Basic ${creds}`
|
||||
}
|
||||
});
|
||||
if(!r.ok) {
|
||||
if(r.status === 401)
|
||||
throw new Error('Permission denied');
|
||||
else
|
||||
throw new Error(`The server said: ${r.status} ${r.statusText}`);
|
||||
return;
|
||||
}
|
||||
}
|
||||
|
||||
function displayError(message) {
|
||||
document.getElementById('errormessage').textContent = (message || '');
|
||||
}
|
Loading…
Reference in a new issue