From 5dd2646d1a5d4228da300e67843cf7c880f58707 Mon Sep 17 00:00:00 2001
From: vigdorov <vigdorov@yandex-team.ru>
Date: Thu, 10 Sep 2020 22:24:50 +0300
Subject: [PATCH] =?UTF-8?q?HM-129.=20=D0=9F=D1=80=D0=B0=D0=B2=D0=BA=D0=B8?=
 =?UTF-8?q?=20=D0=BE=D1=88=D0=B8=D0=B1=D0=BA=D0=B8=20=D0=BD=D0=B5=20=D0=B2?=
 =?UTF-8?q?=D0=B5=D1=80=D0=BD=D0=BE=D0=B3=D0=BE=20=D1=81=D1=82=D0=B0=D1=80?=
 =?UTF-8?q?=D0=BE=D0=B3=D0=BE=20=D0=BF=D0=B0=D1=80=D0=BE=D0=BB=D1=8F?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/users/users.service.ts | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/users/users.service.ts b/src/users/users.service.ts
index eb3f4bf..12021be 100644
--- a/src/users/users.service.ts
+++ b/src/users/users.service.ts
@@ -248,7 +248,10 @@ export class UserService {
             throw new BadRequestException('Запрещено менять пароль пользователя admin');
         }
         const user = await this.userModel().findOne({login});
-        if (user && await this.checkPassword(old_password, user.password)) {
+        if (!await this.checkPassword(old_password, user.password)) {
+            throw new BadRequestException('Не верный старый пароль');
+        }
+        if (user) {
             const salt = user.salt;
             const password = await bcrypt.hash(new_password, salt);
             await user.updateOne({