From 167fe462885f286b84f26e082a663c5d6cde5e0a Mon Sep 17 00:00:00 2001
From: Brian Schrameck <brian@cardiocast.app>
Date: Mon, 28 Jun 2021 16:36:14 -0400
Subject: [PATCH] Addresses a bug that would prevent users from changing their
 own passwords, introduced as part of #1187. (#1214)

---
 persistence/user_repository.go | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/persistence/user_repository.go b/persistence/user_repository.go
index b66d698e9..00eebf138 100644
--- a/persistence/user_repository.go
+++ b/persistence/user_repository.go
@@ -180,6 +180,11 @@ func (r *userRepository) Update(entity interface{}, cols ...string) error {
 		u.IsAdmin = false
 		u.UserName = usr.UserName
 	}
+
+	// Decrypt the user's existing password before validating. This is required otherwise the existing password entered by the user will never match.
+	if err := r.decryptPassword(usr); err != nil {
+		return err
+	}
 	if err := validatePasswordChange(u, usr); err != nil {
 		return err
 	}