Skip to content

Feature/hu 03 change password #39

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
SebastianLopezO merged 10 commits into from
Aug 10, 2025
Merged

Feature/hu 03 change password #39

SebastianLopezO merged 10 commits into from
Aug 10, 2025

Conversation

@SebastianLopezO
Copy link
Member

@SebastianLopezO SebastianLopezO commented Aug 7, 2025

Implement secure JWT encryption using SECURITY_AES_KEY and add Change Password feature

  • Added AESEncryptionService to securely encrypt and decrypt JWT tokens using the SECURITY_AES_KEY environment variable.
  • Updated JwtService and JwtServiceI interface to support encryption mechanisms, preventing token decryption by third parties.
  • Implemented the missing register(UserDTO) method in JwtService to resolve build issues.
  • Introduced ResetTokenDTO to encapsulate reset token data for secure password recovery.
  • Extended AuthController to support secure password change and token validation flow.
  • Fixed mapping warnings in MUser.java (userRole, role) and MCrop.java (cropStatus, cropType, status, type).
  • Noted deprecated API usage in SecurityConfiguration.java; consider recompiling with -Xlint:deprecation.

Andres2204 and others added 10 commits July 2, 2025 22:44
@Andres2204
fix: jwtservice updated existing user, now update the requested
66c5337
@Andres2204
The reset/password path handler now needs the old password to be sent…
05d18d0 
… to change it. JwtServiceI.resetPassword methods were updated and SUser.UpdateUserPassword was added.
@Andres2204
oldpassword field was removed from UserDTO, and update documentation …
fc18faa 
…for UpdateUserPassword()
@Andres2204
AES256 Encryption for jwt
39945a1
@Andres2204
The ResetTokenDTO class has been created and the encryption methods h…
426297b 
…ave been transferred
@Andres2204
Reset Token mapper was deleted and moved to ResetTokenDTO class
4749c69
@Andres2204
basic verification of resetToken
842d5bd
@Andres2204
logging and unused import were removed.
854cf31
@SebastianLopezO
Merge branch 'main' into feature/HU-03-change-password
57c3fab
@SebastianLopezO
Fix JwtService compilation issue and address entity mapping warnings
d5f6c10
@SebastianLopezO SebastianLopezO merged commit 22aa446 into main Aug 10, 2025
11 checks passed
@SebastianLopezO SebastianLopezO deleted the feature/HU-03-change-password branch August 10, 2025 17:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Andres2204 Andres2204 Awaiting requested review from Andres2204

@darwingtx darwingtx Awaiting requested review from darwingtx

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@SebastianLopezO @Andres2204