Ralf Haferkamp 29f52515e1 graph: Fix Status code when updating the password ...

Up to now the /me/changePassword endpoint return a 500 Status when
issue a password change with the old password set to the wrong password.
This changes the code to return 400 (Bad Request) with an additional
message that the old password is wrong. This does not seem to weaken the
security of /me/changePassword (i.e. for allowing easier brute-force
attacks) as the endpoint is only available to already authenticated
users (and only for changing their own passwords)

See #4480

2022-09-05 15:57:46 +02:00

..

command

remove Log prefix from configlog functions

2022-08-22 08:08:18 +02:00

config

update description for event structs

2022-07-21 10:27:43 +02:00

identity

Avoid panics when LDAP users miss required attributes

2022-08-05 16:46:45 +02:00

logging

refactor extensions -> services

2022-06-27 14:05:36 +02:00

metrics

rename folder extensions -> services

2022-06-27 14:05:36 +02:00

middleware

refactor extensions -> services

2022-06-27 14:05:36 +02:00

server

make graph service events optional

2022-07-15 07:51:30 +02:00

service/v0

graph: Fix Status code when updating the password

2022-09-05 15:57:46 +02:00

tracing

refactor extensions -> services

2022-06-27 14:05:36 +02:00