Invalidate sessions when changing password or kdf values

This commit is contained in:
Daniel García 2020-10-03 22:43:13 +02:00
parent 729c9cff41
commit 448e6ac917
No known key found for this signature in database
GPG Key ID: FC8A7D14C3CD543A

View File

@ -121,6 +121,7 @@ impl User {
pub fn set_password(&mut self, password: &str) { pub fn set_password(&mut self, password: &str) {
self.password_hash = crypto::hash_password(password.as_bytes(), &self.salt, self.password_iterations as u32); self.password_hash = crypto::hash_password(password.as_bytes(), &self.salt, self.password_iterations as u32);
self.reset_security_stamp();
} }
pub fn reset_security_stamp(&mut self) { pub fn reset_security_stamp(&mut self) {