All Tests Work! Password reset implemented. Users list sorted.

2025-12-10 12:08:11 +02:00
parent bc9b685dec
commit 5597d45e48
16 changed files with 1033 additions and 39 deletions
--- a/server/src/routes/auth.ts
+++ b/server/src/routes/auth.ts
@@ -191,6 +191,9 @@ router.get('/users', async (req, res) => {
                isBlocked: true,
                isFirstLogin: true,
                profile: true
+            },
+            orderBy: {
+                email: 'asc'
            }
        });

@@ -259,4 +262,39 @@ router.patch('/users/:id/block', async (req, res) => {
    }
 });

+// Admin: Reset User Password
+router.post('/users/:id/reset-password', async (req, res) => {
+    try {
+        const token = req.headers.authorization?.split(' ')[1];
+        if (!token) return res.status(401).json({ error: 'Unauthorized' });
+
+        const decoded = jwt.verify(token, JWT_SECRET) as any;
+        if (decoded.role !== 'ADMIN') {
+            return res.status(403).json({ error: 'Admin access required' });
+        }
+
+        const { id } = req.params;
+        const { newPassword } = req.body;
+
+        if (!newPassword || newPassword.length < 4) {
+            return res.status(400).json({ error: 'Password too short' });
+        }
+
+        const hashed = await bcrypt.hash(newPassword, 10);
+
+        await prisma.user.update({
+            where: { id },
+            data: {
+                password: hashed,
+                isFirstLogin: true // Force them to change it on login
+            }
+        });
+
+        res.json({ success: true });
+    } catch (error) {
+        console.error('Reset password error:', error);
+        res.status(500).json({ error: 'Server error' });
+    }
+});
+
 export default router;
--- a/server/src/scripts/reset-users.js
+++ b/server/src/scripts/reset-users.js
@@ -0,0 +1,27 @@
+
+import Database from 'better-sqlite3';
+
+// Use DATABASE_URL if provided, else default
+// DATABASE_URL from Prisma usually starts with 'file:'
+let dbPath = process.env.DATABASE_URL || './prisma/test.db';
+if (dbPath.startsWith('file:')) {
+    dbPath = dbPath.slice(5);
+}
+
+console.log(`Resetting DB at ${dbPath}`);
+
+try {
+    const db = new Database(dbPath);
+    // Enable Foreign Keys to ensure cascading deletes work
+    db.pragma('foreign_keys = ON');
+
+    // Optional: WAL mode typically used in app
+    // db.pragma('journal_mode = WAL'); 
+
+    const info = db.prepare('DELETE FROM User').run();
+    console.log(`Deleted ${info.changes} users.`);
+    db.close();
+} catch (error) {
+    console.error('Failed to reset DB:', error);
+    process.exit(1);
+}