From 448e6ac917e6bf34f7a5af175714eef9058b6021 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Daniel=20Garc=C3=ADa?= Date: Sat, 3 Oct 2020 22:43:13 +0200 Subject: [PATCH] Invalidate sessions when changing password or kdf values --- src/db/models/user.rs | 1 + 1 file changed, 1 insertion(+) diff --git a/src/db/models/user.rs b/src/db/models/user.rs index 23154d6..32c3cec 100644 --- a/src/db/models/user.rs +++ b/src/db/models/user.rs @@ -121,6 +121,7 @@ impl User { pub fn set_password(&mut self, password: &str) { self.password_hash = crypto::hash_password(password.as_bytes(), &self.salt, self.password_iterations as u32); + self.reset_security_stamp(); } pub fn reset_security_stamp(&mut self) {