From fa57f79929bf962c8ce1d559f27f4ef49b49d607 Mon Sep 17 00:00:00 2001
From: Graham Cantin <Kamilion@gmail.com>
Date: Wed, 20 Jul 2011 02:55:02 -0700
Subject: [PATCH] * Added /password to change a user's password. Verifies they
 are logged in first, and checks the old password against the old hash in the
 DB.

---
 TShockAPI/Commands.cs | 37 ++++++++++++++++++++++++++++++++++++-
 1 file changed, 36 insertions(+), 1 deletion(-)

diff --git a/TShockAPI/Commands.cs b/TShockAPI/Commands.cs
index ebd88f1a..f31c6c6d 100755
--- a/TShockAPI/Commands.cs
+++ b/TShockAPI/Commands.cs
@@ -157,7 +157,8 @@ namespace TShockAPI
             ChatCommands.Add(new Command(PartyChat, "p"));
             ChatCommands.Add(new Command(Rules, "rules"));
             ChatCommands.Add(new Command("logs", DisplayLogs, "displaylogs"));
-            ChatCommands.Add(new Command(RegisterUser, "register"));
+            ChatCommands.Add(new Command(PasswordUser, "password") { DoLog = false });
+            ChatCommands.Add(new Command(RegisterUser, "register") { DoLog = false });
             ChatCommands.Add(new Command("root-only", ManageUsers, "user") { DoLog = false });
             ChatCommands.Add(new Command("root-only", GrabUserIP, "ip"));
             ChatCommands.Add(new Command("root-only", AuthVerify, "auth-verify"));
@@ -332,6 +333,40 @@ namespace TShockAPI
 
         }
 
+        private static void PasswordUser(CommandArgs args)
+        {
+
+            try
+            {
+                if (args.Player.IsLoggedIn && args.Parameters.Count == 2)
+                {
+                    var user = TShock.Users.GetUserByName(args.Player.UserAccountName);
+                    string encrPass = Tools.HashPassword(args.Parameters[0]);
+                    string[] exr = TShock.Users.FetchHashedPasswordAndGroup(args.Player.UserAccountName);
+                    if (exr[0].ToUpper() == encrPass.ToUpper())
+                    {
+                        args.Player.SendMessage("You changed your password!", Color.Green);
+                        TShock.Users.SetUserPassword(user, args.Parameters[1]); // SetUserPassword will hash it for you.
+                        Log.ConsoleInfo(args.Player.IP + " named " + args.Player.Name + " changed the password of Account " + user.Name);
+                    }
+                    else
+                    {
+                        args.Player.SendMessage("You failed to change your password!", Color.Red);
+                        Log.ConsoleError(args.Player.IP + " named " + args.Player.Name + " failed to change password for Account: " + user.Name);
+                    }
+                }
+                else
+                {
+                    args.Player.SendMessage("Not Logged in or Invalid syntax! Proper syntax: /register <username> <password>", Color.Red);
+                }
+            }
+            catch (UserManagerException ex)
+            {
+                args.Player.SendMessage("Sorry, an error occured: " + ex.Message, Color.Green);
+                Log.ConsoleError("RegisterUser returned an error: " + ex.ToString());
+            }
+        }
+
         private static void RegisterUser(CommandArgs args)
         {
             try