1234567891011121314151617181920212223242526272829303132 |
- # Copyright (C) 2012-2025 Zammad Foundation, https://zammad-foundation.org/
- # frozen_string_literal: true
- module Gql::Mutations
- class User::PasswordReset::Update < BaseMutation
- description 'Update user password via reset token.'
- argument :token, String, required: true, description: 'Verification token'
- argument :password, String, required: true, description: 'The user password'
- field :success, Boolean, description: 'This indicates if the password update was successful.'
- def self.authorize(...)
- true
- end
- def resolve(token:, password:)
- update = Service::User::PasswordReset::Update.new(token: token, password: password)
- begin
- update.execute
- rescue Service::User::PasswordReset::Update::InvalidTokenError, Service::User::PasswordReset::Update::EmailError => e
- return error_response({ message: e.message })
- rescue PasswordPolicy::Error => e
- return error_response({ message: e.message, field: 'password' })
- end
- { success: true }
- end
- end
- end
|