From d81a4ef0ee25a3595a85cf04d6a44b9d074e7d36 Mon Sep 17 00:00:00 2001
From: karenvicent <karenvergara@msn.com>
Date: Mon, 6 Oct 2025 15:15:56 -0400
Subject: [PATCH] fix user service

---
 server/src/controllers/v1/authController.js   | 4 ++--
 server/src/service/v1/business/userService.js | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/server/src/controllers/v1/authController.js b/server/src/controllers/v1/authController.js
index 5a9b4306f..e52de3849 100755
--- a/server/src/controllers/v1/authController.js
+++ b/server/src/controllers/v1/authController.js
@@ -464,10 +464,10 @@ class AuthController extends BaseController {
 			}
 
 			const userId = req.params.userId;
-			const updates = { ...req.body };
 			await editUserByIdParamValidation.validateAsync(req.params);
 			await editUserPasswordByIdBodyValidation.validateAsync(req.body);
-			await this.userService.setPasswordByUserId(userId, updates);
+			const updatedPassword = req.body.password;
+			await this.userService.setPasswordByUserId(userId, updatedPassword);
 			return res.success({ msg: "Password reset successfully" });
 		},
 		SERVICE_NAME,
diff --git a/server/src/service/v1/business/userService.js b/server/src/service/v1/business/userService.js
index c81d9135e..bbf7102e5 100644
--- a/server/src/service/v1/business/userService.js
+++ b/server/src/service/v1/business/userService.js
@@ -212,7 +212,7 @@ class UserService {
 		await this.db.userModule.editUserById(userId, user);
 	};
 	setPasswordByUserId = async (userId, updates) => {
-		const updatedUser = await this.db.userModule.updateUser({ userId: userId, user: updates, file: null });
+		const updatedUser = await this.db.userModule.updateUser({ userId: userId, user: { password: updates }, file: null });
 		return updatedUser;
 	};
 }