[Reset Password] Admin reset actions (#1272)

* [Reset Password] Admin reset actions * Updated thrown except for permission collision * Updated GET/PUT password reset to use orgUser.Id for db operations
2025-07-11 12:53:50 -05:00 · 2021-04-20 16:58:57 -05:00
parent ba36afe69c
commit 477f679fc6
7 changed files with 155 additions and 2 deletions
--- a/src/Core/Services/Implementations/UserService.cs
+++ b/src/Core/Services/Implementations/UserService.cs
@ -600,6 +600,24 @@ namespace Bit.Core.Services
            
            return IdentityResult.Success;
        }
+        
+        public async Task<IdentityResult> AdminResetPasswordAsync(User user, string newMasterPassword, string key)
+        {
+            var result = await UpdatePasswordHash(user, newMasterPassword);
+            if (!result.Succeeded)
+            {
+                return result;
+            }
+
+            user.RevisionDate = user.AccountRevisionDate = DateTime.UtcNow;
+            user.Key = key;
+
+            await _userRepository.ReplaceAsync(user);
+            await _eventService.LogUserEventAsync(user.Id, EventType.User_ChangedPassword);
+            await _pushService.PushLogOutAsync(user.Id);
+
+            return IdentityResult.Success;
+        }

        public async Task<IdentityResult> ChangeKdfAsync(User user, string masterPassword, string newMasterPassword,
            string key, KdfType kdf, int kdfIterations)