From 3846d4d0394f42c80dd8088c6763962b40bb929b Mon Sep 17 00:00:00 2001
From: ivan <ivan>
Date: Fri, 30 Sep 2011 05:15:32 +0000
Subject: [PATCH] check old password if supplied, RT#13656

---
 FS/FS/ClientAPI/MyAccount.pm | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/FS/FS/ClientAPI/MyAccount.pm b/FS/FS/ClientAPI/MyAccount.pm
index a5f47934b..16a631118 100644
--- a/FS/FS/ClientAPI/MyAccount.pm
+++ b/FS/FS/ClientAPI/MyAccount.pm
@@ -2148,6 +2148,11 @@ sub myaccount_passwd {
   } )
     or return { 'error' => "Service not found" };
 
+  if ( exists($p->{'old_password'}) ) {
+    return "Incorrect password."
+      unless $svc_acct->check_password($p->{'old_password'});
+  }
+
   $svc_acct->_password($p->{'new_password'});
   my $error = $svc_acct->replace();
 
-- 
2.11.0