Allow password modification in the UI

[Talanor]

Hey,
thanks for the nice work, I have a few ideas for improvements that may or may not be interesting but I'll share them, the first is: Being able to change the current user's password in flood's UI under "Authentication".

It will make it possible to pre-setup an account and allow the end-user to change their password (in case of a shared flood instance for example)

[jesec]

Flood server does support that:

flood/server/models/Users.ts

Lines 134 to 146 in c279760

	/**
	* Updates a user.
	*
	* @param {string} username - Name of the user to be updated.
	* @param {Partial<Credentials>} userRecordPatch - Changes to the user.
	* @return {Promise<string>} - Returns new username of updated user or rejects with error.
	*/
	async updateUser(username: string, userRecordPatch: Partial<Credentials>): Promise<string> {
	const patch = userRecordPatch;
	if (patch.password != null) {
	patch.password = await hashPassword(patch.password);
	}

Currently you can do that with PATCH /api/auth/users/{username} API:

flood/shared/schema/api/auth.ts

Lines 28 to 30 in c279760

	// PATCH /api/auth/users/{username}
	export const authUpdateUserSchema = credentialsSchema.partial();
	export type AuthUpdateUserOptions = zodInfer<typeof authUpdateUserSchema>;

Flood API is quite easy to use. You can call Flood's APIs simply with curl:

# Auth and get auth token from cookie
curl -c auth.token -X POST -H "Content-Type: application/json" -d '{"username":"test","password":"old"}' http://127.0.0.1:3000/api/auth/authenticate

# Change user (everything can be changed, not only password)
curl -b auth.token -X PATCH -H "Content-Type: application/json" -d '{"username":"newName","password":"newPassword"}' http://127.0.0.1:3000/api/auth/users/test

Frontend support is on the roadmap: https://github.com/jesec/flood/projects/5#card-51269106.

[Talanor]

Damn, I'll go read all of those. thanks again.