diff options
author | Sebastian Reichel <sre@ring0.de> | 2012-10-05 20:52:04 +0200 |
---|---|---|
committer | Sebastian Reichel <sre@ring0.de> | 2012-10-05 20:52:04 +0200 |
commit | 6b69561a171568b36710e0e28aea9f0bd59a295c (patch) | |
tree | d54b98b5dabb513a9f93ddee1d5bac559f885522 /src/db.vala | |
parent | 133f6d01ce9dcbc01ccbef0bc58cecc9ca713cfe (diff) | |
download | serial-barcode-scanner-6b69561a171568b36710e0e28aea9f0bd59a295c.tar.bz2 |
add password change option (Closes GH-15)
Diffstat (limited to 'src/db.vala')
-rw-r--r-- | src/db.vala | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/src/db.vala b/src/db.vala index d261eed..2ab5f7c 100644 --- a/src/db.vala +++ b/src/db.vala @@ -184,6 +184,7 @@ public class Database { queries["session_get"] = "SELECT user FROM authentication WHERE session = ?"; queries["username"] = "SELECT firstname, lastname FROM users WHERE id = ?"; queries["password_get"] = "SELECT password FROM authentication WHERE user = ?"; + queries["password_set"] = "UPDATE authentication SET password=? WHERE user = ?"; queries["userinfo"] = "SELECT firstname, lastname, email, gender, street, plz, city FROM users WHERE id = ?"; queries["userauth"] = "SELECT disabled, superuser FROM authentication WHERE user = ?"; queries["profit_by_product"] = "SELECT name, SUM(memberprice - (SELECT price FROM purchaseprices WHERE product = purch.product)) AS price FROM sells purch, prices, products WHERE purch.product = products.id AND purch.product = prices.product AND purch.user > 0 AND purch.timestamp > ? AND purch.timestamp < ? AND prices.valid_from = (SELECT valid_from FROM prices WHERE product = purch.product AND valid_from < purch.timestamp ORDER BY valid_from DESC LIMIT 1) GROUP BY name ORDER BY price;"; @@ -582,6 +583,26 @@ public class Database { } } + public void set_user_password(int32 user, string password) { + var pwhash = Checksum.compute_for_string(ChecksumType.SHA256, password); + int rc; + + /* create user auth line if not existing */ + statements["user_auth_create"].reset(); + statements["user_auth_create"].bind_int(1, user); + rc = statements["user_auth_create"].step(); + if(rc != Sqlite.DONE) + error("[internal error: %d]".printf(rc)); + + /* set password */ + statements["password_set"].reset(); + statements["password_set"].bind_text(1, pwhash); + statements["password_set"].bind_int(2, user); + rc = statements["password_set"].step(); + if(rc != Sqlite.DONE) + error("[internal error: %d]".printf(rc)); + } + public void set_sessionid(int user, string sessionid) { statements["session_set"].reset(); statements["session_set"].bind_text(1, sessionid); |