Added functionality to change password

Missing permission for users to remove their own signup
2024-12-19 19:33:45 -06:00 · 2024-12-19 16:00:48 -06:00
18 changed files with 232 additions and 84 deletions
--- a/.idea/.idea.sanAntonioSeniorGolf/.idea/dataSources.xml
+++ b/.idea/.idea.sanAntonioSeniorGolf/.idea/dataSources.xml
@ -25,5 +25,18 @@
      <jdbc-url>jdbc:sqlite:$USER_HOME$/.local/share/scoreSphere/core.sqlite</jdbc-url>
      <working-dir>$ProjectFileDir$</working-dir>
    </data-source>
+    <data-source source="LOCAL" name="SASG" uuid="65a22a18-3e0c-46e8-afbf-198b2bbb4f78">
+      <driver-ref>mysql.8</driver-ref>
+      <synchronize>true</synchronize>
+      <jdbc-driver>com.mysql.cj.jdbc.Driver</jdbc-driver>
+      <jdbc-url>jdbc:mysql://localhost:5618</jdbc-url>
+      <jdbc-additional-properties>
+        <property name="com.intellij.clouds.kubernetes.db.host.port" />
+        <property name="com.intellij.clouds.kubernetes.db.enabled" value="false" />
+        <property name="com.intellij.clouds.kubernetes.db.resource.type" value="Deployment" />
+        <property name="com.intellij.clouds.kubernetes.db.container.port" />
+      </jdbc-additional-properties>
+      <working-dir>$ProjectFileDir$</working-dir>
+    </data-source>
  </component>
 </project>
--- a/.idea/.idea.sanAntonioSeniorGolf/.idea/deployment.xml
+++ b/.idea/.idea.sanAntonioSeniorGolf/.idea/deployment.xml
@ -1,14 +1,4 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <project version="4">
-  <component name="PublishConfigData" serverName="boysserver" remoteFilesAllowedToDisappearOnAutoupload="false">
-    <serverData>
-      <paths name="boysserver">
-        <serverdata>
-          <mappings>
-            <mapping deploy="/" local="$PROJECT_DIR$" web="/" />
-          </mappings>
-        </serverdata>
-      </paths>
-    </serverData>
-  </component>
+  <component name="PublishConfigData" serverName="temp" remoteFilesAllowedToDisappearOnAutoupload="false" />
 </project>
--- a/.idea/.idea.sanAntonioSeniorGolf/.idea/sqldialects.xml
+++ b/.idea/.idea.sanAntonioSeniorGolf/.idea/sqldialects.xml
@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="SqlDialectMappings">
+    <file url="file://$PROJECT_DIR$/Setup/Filler/Permissions.sql" dialect="MySQL" />
+  </component>
+</project>
--- a/.idea/.idea.sanAntonioSeniorGolf/.idea/sshConfigs.xml
+++ b/.idea/.idea.sanAntonioSeniorGolf/.idea/sshConfigs.xml
@ -2,6 +2,8 @@
 <project version="4">
  <component name="SshConfigs">
    <configs>
+      <sshConfig host="4.72.148.132.host.secureserver.net" id="803b7675-648e-4d0f-8433-0abf8725c35f" keyPath="$USER_HOME$/.ssh/dotnetSanAntonioSeniorGolf" port="22" nameFormat="DESCRIPTIVE" username="dotnet" useOpenSSHConfig="false" />
+      <sshConfig host="4.72.148.132.host.secureserver.net" id="7db7f912-3e0a-4cfc-90fe-563abe88fa2c" keyPath="$USER_HOME$/.ssh/sanantonioseniorgolf" port="22" nameFormat="DESCRIPTIVE" username="oaksana" useOpenSSHConfig="true" />
      <sshConfig host="192.168.1.52" id="e58264ea-75c0-4f9e-aa5c-b6ece113fffb" keyPath="$USER_HOME$/.ssh/dotnet" port="22" nameFormat="DESCRIPTIVE" username="dotnet" />
    </configs>
  </component>
--- a/.idea/.idea.sanAntonioSeniorGolf/.idea/webServers.xml
+++ b/.idea/.idea.sanAntonioSeniorGolf/.idea/webServers.xml
@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="WebServers">
+    <option name="servers">
+      <webServer id="a7501199-1083-42a2-9cb8-0a02a845371d" name="temp" url="http://signup.sanantonioseniorgolf.com/">
+        <fileTransfer rootFolder="/home/dotnet/signupBackend.rewrite/API" accessType="SFTP" host="4.72.148.132.host.secureserver.net" port="22" sshConfigId="803b7675-648e-4d0f-8433-0abf8725c35f" sshConfig="dotnet@4.72.148.132.host.secureserver.net:22 key" keyPair="true">
+          <advancedOptions>
+            <advancedOptions dataProtectionLevel="Private" keepAliveTimeout="0" passiveMode="true" shareSSLContext="true" />
+          </advancedOptions>
+        </fileTransfer>
+      </webServer>
+    </option>
+  </component>
+</project>
--- a/API/Authentication/GrantNames/SignupGrantNames.cs
+++ b/API/Authentication/GrantNames/SignupGrantNames.cs
@ -10,6 +10,7 @@ namespace API.Authentication.GrantNames
 		public const string CanUpdate = "api.signup.update";
 		public const string CanDeleteAny = "api.signup.delete.any";
 		public const string CanDelete = "api.signup.delete";
+		public const string CanDeleteSelf = "api.signup.delete.self";
 		public const string CanAddOthers = "api.signup.add.others";
 	}
 }
--- a/API/Authentication/GrantNames/UserGrantNames.cs
+++ b/API/Authentication/GrantNames/UserGrantNames.cs
@ -14,5 +14,7 @@ namespace API.Authentication.GrantNames
 		public const string CanUpdatePermission = "api.user.update.permission";
 		public const string CanDeleteAny = "api.user.delete.any";
 		public const string CanDelete = "api.user.delete";
+		public const string CanChangePasswordSelf = "api.user.update.password.self";
+		public const string CanChangePasswordOthers = "api.user.update.password.others";
 	}
 }
--- a/API/Authentication/Interfaces/IUserAuthentication.cs
+++ b/API/Authentication/Interfaces/IUserAuthentication.cs
@ -5,5 +5,6 @@ namespace API.Authentication.Interfaces
 {
 	public interface IUserAuthentication : IGenericAuthentication<UserDTO, User>
 	{
+		bool canChangePassword(User destUser, User changingUser, bool oldPasswordMatchNew);
 	}
 }
--- a/API/Authentication/SignupAuthentication.cs
+++ b/API/Authentication/SignupAuthentication.cs
@ -42,6 +42,7 @@ namespace API.Authentication
 		public bool canDelete(Signup model, User user)
 		{
 			return _grantManager.hasGrant(user.permissionId, SignupGrantNames.CanDeleteAny) ||
+			       (model.userId == user.id && _grantManager.hasGrant(user.permissionId, SignupGrantNames.CanDeleteSelf)) ||
 			       _grantManager.getULongValues(user.permissionId, SignupGrantNames.CanDelete).Exists(x => x == model.id);
 		}
 	}
--- a/API/Authentication/UserAuthentication.cs
+++ b/API/Authentication/UserAuthentication.cs
@ -39,7 +39,6 @@ namespace API.Authentication
 			{
 				if (!_grantManager.hasGrant(user.permissionId, UserGrantNames.CanUpdateSelf)
 				    || !_grantManager.hasGrant(user.permissionId, UserGrantNames.CanUpdateAny)
-				    || !_grantManager.getULongValues(user.permissionId, UserGrantNames.CanUpdate).Exists(x => x == model.id)
 				   )
 					return false;

@ -82,5 +81,10 @@ namespace API.Authentication
 			        _grantManager.getULongValues(user.permissionId, UserGrantNames.CanDelete).Exists(x => x == model.id))
 			       && model.id != user.id;
 		}
+		public bool canChangePassword(User destUser, User changingUser, bool oldPasswordMatchNew)
+		{
+			return (destUser.id == changingUser.id && _grantManager.hasGrant(changingUser.permissionId, UserGrantNames.CanChangePasswordSelf) && oldPasswordMatchNew) ||
+			       _grantManager.hasGrant(changingUser.permissionId, UserGrantNames.CanChangePasswordOthers);
+		}
 	}
 }
--- a/API/Controllers/AuthController.cs
+++ b/API/Controllers/AuthController.cs
@ -1,4 +1,5 @@
 using API.DTO.Base;
+using API.DTO.Base.Update;
 using API.DTO.Login;
 using API.Errors;
 using API.Services;
@ -54,7 +55,7 @@ namespace API.Controllers
 			if (registerDTO.password == null)
 				registerDTO.password = registerDTO.phoneNumber;

-			if (permissionId == null)
+			if (permissionId != null)
 			{
 				User? user = getUser(User);
 				if (user == null)
@ -66,8 +67,7 @@ namespace API.Controllers

 				return Ok(createdUser);
 			}
-
-			{
+			else {
 				UserDTO? user = _userManager.registerUser(registerDTO);

 				if (user == null)
@ -79,6 +79,20 @@ namespace API.Controllers
 			}
 		}

+		[HttpPut("changePassword")]
+		public ActionResult<UserDTO> changePassword(UserPasswordUpdateDTO passwordUpdateDTO)
+		{
+			User? user = getUser(User);
+			if (user == null)
+				return Unauthorized();
+
+			UserDTO? result = _userManager.changePassword(passwordUpdateDTO, user);
+			if (result == null)
+				return Forbid();
+
+			return result;
+		}
+
 		[NonAction]
 		public User? getUser(ClaimsPrincipal user)
 		{
--- a/API/DTO/Base/Update/UserPasswordUpdateDTO.cs
+++ b/API/DTO/Base/Update/UserPasswordUpdateDTO.cs
@ -0,0 +1,16 @@
+using DAL.Values;
+using System.ComponentModel.DataAnnotations;
+
+namespace API.DTO.Base.Update
+{
+	public class UserPasswordUpdateDTO
+	{
+		public PhoneNumber phoneNumber { get; set; } = null!;
+
+		[MaxLength(100)]
+		public string? oldPassword { get; set; }
+
+		[MaxLength(100)]
+		public string newPassword { get; set; } = null!;
+	}
+}
--- a/API/Services/Interfaces/IUserManager.cs
+++ b/API/Services/Interfaces/IUserManager.cs
@ -1,4 +1,5 @@
 using API.DTO.Base;
+using API.DTO.Base.Update;
 using API.DTO.Login;
 using DAL.Models;

@ -9,5 +10,7 @@ namespace API.Services.Interfaces
 		UserDTO? authenticateUser(UserLoginDTO loginDTO);

 		UserDTO? registerUser(UserRegisterDTO registerDTO, User? user = null, ulong? permissionId = null);
+
+		UserDTO? changePassword(UserPasswordUpdateDTO passwordUpdateDTO, User changingUser);
 	}
 }
--- a/API/Services/UserManager.cs
+++ b/API/Services/UserManager.cs
@ -1,4 +1,5 @@
 using API.DTO.Base;
+using API.DTO.Base.Update;
 using API.DTO.Login;
 using API.Hashing.Interfaces;
 using API.Services.Interfaces;
@ -84,5 +85,49 @@ namespace API.Services

 			return dto;
 		}
+
+		public UserDTO? changePassword(UserPasswordUpdateDTO userPasswordUpdateDTO, User changingUser)
+		{
+			User? destUser = _userService.getNoAuthentication(x => x.phoneNumber.Equals(userPasswordUpdateDTO.phoneNumber)).FirstOrDefault();
+			if (destUser == null)
+				return null;
+
+			IHashingAlgorithm? hashingAlgorithm = _hashingFactory.getAlgorithm(_preferredHashingType);
+			if (hashingAlgorithm == null){
+				_logger.Log(LogLevel.Error, "Preferred hashing type '{hashingType}' that isn't recognized by factory '{factory}'.", _preferredHashingType, nameof(_hashingFactory));
+				return null;
+			}
+
+			byte[] newSalt;
+			string hashedNewPassword = hashingAlgorithm.hash(userPasswordUpdateDTO.newPassword, out newSalt);
+
+			bool oldPasswordMatchNew = false;
+			if (userPasswordUpdateDTO.oldPassword != null)
+			{
+				IHashingAlgorithm? userHashingAlgorithm = _hashingFactory.getAlgorithm(destUser.hashingType);
+				if (userHashingAlgorithm == null)
+				{
+					_logger.Log(LogLevel.Warning, "User id '{id}' has a hashing type '{hashingType}' that isn't recognized by factory '{factory}'. Not logging in.", destUser.id, destUser.hashingType, nameof(_hashingFactory));
+					return null;
+				}
+
+				string hashedOldPassword = userHashingAlgorithm.hash(userPasswordUpdateDTO.oldPassword, destUser.salt);
+
+				if (hashedOldPassword.Equals(destUser.password))
+				{
+					oldPasswordMatchNew = true;
+				}
+			}
+
+			User? updatedUser = _userService.changePassword(destUser, changingUser, hashedNewPassword, newSalt, oldPasswordMatchNew);
+
+			if (updatedUser == null)
+				return null;
+
+			UserDTO dto = new UserDTO();
+			dto.adaptFromModel(updatedUser);
+
+			return dto;
+		}
 	}
 }
--- a/API/Services/UserService.cs
+++ b/API/Services/UserService.cs
@ -1,5 +1,6 @@
 using API.Authentication.Interfaces;
 using API.DTO.Base;
+using API.DTO.Base.Update;
 using API.DTO.Login;
 using DAL.Contexts;
 using DAL.Models;
@ -56,5 +57,16 @@ namespace API.Services

 			return model;
 		}
+
+		public User? changePassword(User destUser, User changingUser, string hashedNewPassword, byte[] newSalt, bool oldPasswordMatchNew)
+		{
+			if (!_auth.canChangePassword(destUser, changingUser, oldPasswordMatchNew))
+				return null;
+
+			destUser.password = hashedNewPassword;
+			destUser.salt = newSalt;
+
+			return update(destUser, changingUser);
+		}
 	}
 }
--- a/Setup/Filler/Grants.sql
+++ b/Setup/Filler/Grants.sql
@ -1,207 +1,226 @@
 SET FOREIGN_KEY_CHECKS = 0;

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.color.get.all', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.color.get.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.color.get', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.color.add', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.color.update.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.color.update', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.color.delete.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.color.delete', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.event.get.all', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.event.get.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.event.get', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.event.add', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.event.update.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.event.update', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.event.delete.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.event.delete', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.grant.get.self', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.grant.get.all', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.grant.get.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.grant.get', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.grant.add', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.grant.update.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.grant.update', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.grant.delete.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.grant.delete', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.image.get.all', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.image.get.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.image.get', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.image.add', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.image.update.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.image.update', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.image.delete.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.image.delete', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.permission.get.all', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.permission.get.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.permission.get', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.permission.add', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.permission.update.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.permission.update', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.permission.delete.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.permission.delete', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.savedEvent.get.all', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.savedEvent.get.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.savedEvent.get', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.savedEvent.add', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.savedEvent.update.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.savedEvent.update', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.savedEvent.delete.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.savedEvent.delete', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.get.all', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.get.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.get', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.add', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.update.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.update', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.update.self', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.update.names', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.update.phoneNumber', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.update.permission', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.user.delete.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.signup.get.all', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.signup.get.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.signup.get', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.signup.add', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.signup.update.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.signup.update', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.signup.delete.any', 1, NOW(), 1);

-INSERT INTO san_antonio_senior_golf.grants (name, permissionId, updated, updater)
+INSERT INTO grants (name, permissionId, updated, updater)
 VALUES ('api.signup.delete', 1, NOW(), 1);

+INSERT INTO grants (name, permissionId, updated, updater)
+VALUES ('api.signup.add.others', 1, NOW(), 1);
+
+INSERT INTO grants (name, permissionId, updated, updater)
+VALUES ('api.user.update.password.self', 1, NOW(), 1);
+
+INSERT INTO grants (name, permissionId, updated, updater)
+VALUES ('api.user.update.password.others', 1, NOW(), 1);
+
+
+INSERT INTO grants (name, permissionId, updated, updater)
+VALUES ('api.signup.delete.self', 1, NOW(), 1);
+
+INSERT INTO grants (name, permissionId, updated, updater)
+VALUES ('api.user.update.password.self', 1, NOW(), 1);
+
+INSERT INTO grants (name, permissionId, updated, updater)
+VALUES ('api.user.update.password.others', 1, NOW(), 1);
+
 SET FOREIGN_KEY_CHECKS = 1;
--- a/Setup/Filler/Permissions.sql
+++ b/Setup/Filler/Permissions.sql
@ -1,6 +1,9 @@
 SET FOREIGN_KEY_CHECKS = 0;

-INSERT INTO san_antonio_senior_golf.permissions (name, updated, updater)
+INSERT INTO permissions (name, updated, updater)
 VALUES ('admin', NOW(), 1);

+INSERT INTO permissions (name, updated, updater)
+VALUES ('attendee', NOW(), 1);
+
 SET FOREIGN_KEY_CHECKS = 1;
--- a/sanAntonioSeniorGolf.sln.DotSettings.user
+++ b/sanAntonioSeniorGolf.sln.DotSettings.user
@ -1,4 +1,6 @@
 <wpf:ResourceDictionary xml:space="preserve" xmlns:x="http://schemas.microsoft.com/winfx/2006/xaml" xmlns:s="clr-namespace:System;assembly=mscorlib" xmlns:ss="urn:shemas-jetbrains-com:settings-storage-xaml" xmlns:wpf="http://schemas.microsoft.com/winfx/2006/xaml/presentation">
+	<s:String x:Key="/Default/CodeInspection/ExcludedFiles/FilesAndFoldersToSkip2/=7020124F_002D9FFC_002D4AC3_002D8F3D_002DAAB8E0240759_002Ff_003AActionMethodExecutor_002Ecs_002Fl_003A_002E_002E_003F_002E_002E_003F_002E_002E_003F_002E_002E_003F_002Econfig_003FJetBrains_003FRider2024_002E2_003Fresharper_002Dhost_003FSourcesCache_003Fdb7395f4add94e6d10e515b3e55373f2821f8323de7dc8e314d78feefacf5584_003FActionMethodExecutor_002Ecs/@EntryIndexedValue">ForceIncluded</s:String>
+	<s:String x:Key="/Default/CodeInspection/ExcludedFiles/FilesAndFoldersToSkip2/=7020124F_002D9FFC_002D4AC3_002D8F3D_002DAAB8E0240759_002Ff_003AAuthenticationHttpContextExtensions_002Ecs_002Fl_003A_002E_002E_003F_002E_002E_003F_002E_002E_003F_002E_002E_003F_002Econfig_003FJetBrains_003FRider2024_002E2_003Fresharper_002Dhost_003FSourcesCache_003Feb8b15bbf6ed38ef49b0b77ac383bba3c22ce8dbcff5a4798cdebe3013d9ea_003FAuthenticationHttpContextExtensions_002Ecs/@EntryIndexedValue">ForceIncluded</s:String>
 	<s:String x:Key="/Default/CodeInspection/ExcludedFiles/FilesAndFoldersToSkip2/=7020124F_002D9FFC_002D4AC3_002D8F3D_002DAAB8E0240759_002Ff_003ADbContext_002Ecs_002Fl_003A_002E_002E_003F_002E_002E_003F_002E_002E_003F_002E_002E_003F_002Econfig_003FJetBrains_003FRider2024_002E2_003Fresharper_002Dhost_003FSourcesCache_003F3bd4df5aff92cabbc4d630be64227073db1b8539b3a1e47786b4b189d7cdb7_003FDbContext_002Ecs/@EntryIndexedValue">ForceIncluded</s:String>
 	<s:String x:Key="/Default/Environment/UnitTesting/UnitTestSessionStore/Sessions/=d51071ba_002D6946_002D464f_002Db1ff_002D8183035b48e5/@EntryIndexedValue">&lt;SessionState ContinuousTestingMode="0" IsActive="True" Name="Test1" xmlns="urn:schemas-jetbrains-com:jetbrains-ut-session"&gt;
  &lt;TestAncestor&gt;
Author	SHA1	Message	Date
quentin	93ee75d021	Added functionality to change password	2024-12-19 19:33:45 -06:00
quentin	0b88ebd2e8	Missing permission for users to remove their own signup	2024-12-19 16:00:48 -06:00