template-monorepo/test/k6/journeys/change_password_full.js

// Journey: enroll TOTP → step-up → change password → login with new password
import { post, checkError } from '../lib/http.js';
import { cfg } from '../lib/config.js';
import { registerAndConfirm, login } from '../lib/auth.js';
import {
  changePassword,
  enrollTOTP,
  verifyTOTPForPasswordChange,
} from '../lib/member.js';
export const options = {
  vus: 1,
  iterations: 1,
  thresholds: { checks: ['rate==1.0'] },
};

export default function () {
  const { identity, tokens } = registerAndConfirm();
  const bearer = { Authorization: `Bearer ${tokens.access_token}` };
  const newPassword = 'K6-ChangePass-8!';

  const { otpauthUrl } = enrollTOTP(bearer);
  const stepUpToken = verifyTOTPForPasswordChange(bearer, otpauthUrl);

  const data = changePassword(identity.password, newPassword, bearer, {
    stepUpToken,
  });
  if (!data.ok) {
    throw new Error('change password journey: expected ok=true');
  }

  const session = login({
    email: identity.email,
    password: newPassword,
    otpauthUrl,
  });
  if (!session.access_token) {
    throw new Error('change password journey: login with new password failed');
  }

  checkError(
    post('/api/v1/auth/login', {
      tenant_slug: cfg.tenantSlug,
      email: identity.email,
      password: identity.password,
    }),
    'POST /auth/login (old password after change)',
    401,
    28501000,
  );
}
add fix eage case 2026-05-27 09:28:13 +00:00			`// Journey: enroll TOTP → step-up → change password → login with new password`
feat: k6 test 2026-05-26 17:10:32 +00:00			`import { post, checkError } from '../lib/http.js';`
			`import { cfg } from '../lib/config.js';`
add fix eage case 2026-05-27 09:28:13 +00:00			`import { registerAndConfirm, login } from '../lib/auth.js';`
			`import {`
			`changePassword,`
			`enrollTOTP,`
			`verifyTOTPForPasswordChange,`
			`} from '../lib/member.js';`
feat: k6 test 2026-05-26 17:10:32 +00:00			`export const options = {`
			`vus: 1,`
			`iterations: 1,`
			`thresholds: { checks: ['rate==1.0'] },`
			`};`

			`export default function () {`
			`const { identity, tokens } = registerAndConfirm();`
			const bearer = { Authorization: `Bearer ${tokens.access_token}` };
			`const newPassword = 'K6-ChangePass-8!';`

add fix eage case 2026-05-27 09:28:13 +00:00			`const { otpauthUrl } = enrollTOTP(bearer);`
			`const stepUpToken = verifyTOTPForPasswordChange(bearer, otpauthUrl);`

			`const data = changePassword(identity.password, newPassword, bearer, {`
			`stepUpToken,`
			`});`
feat: k6 test 2026-05-26 17:10:32 +00:00			`if (!data.ok) {`
			`throw new Error('change password journey: expected ok=true');`
			`}`

add fix eage case 2026-05-27 09:28:13 +00:00			`const session = login({`
feat: k6 test 2026-05-26 17:10:32 +00:00			`email: identity.email,`
			`password: newPassword,`
add fix eage case 2026-05-27 09:28:13 +00:00			`otpauthUrl,`
feat: k6 test 2026-05-26 17:10:32 +00:00			`});`
add fix eage case 2026-05-27 09:28:13 +00:00			`if (!session.access_token) {`
feat: k6 test 2026-05-26 17:10:32 +00:00			`throw new Error('change password journey: login with new password failed');`
			`}`

			`checkError(`
			`post('/api/v1/auth/login', {`
			`tenant_slug: cfg.tenantSlug,`
			`email: identity.email,`
			`password: identity.password,`
			`}),`
			`'POST /auth/login (old password after change)',`
			`401,`
			`28501000,`
			`);`
			`}`