Close issue ESAPI#288.

kwwall · kwwall · commit fb711682e97d · 2016-01-31T18:47:00.000-05:00
diff --git a/src/test/java/org/owasp/esapi/reference/UserTest.java b/src/test/java/org/owasp/esapi/reference/UserTest.java
@@ -163,6 +163,13 @@ public void testChangePassword() throws Exception {
 		} catch( AuthenticationException e ) {
 			// expected
 		}
+		try {
+			// Test for GitHub issue 288
+			user.changePassword(password2, oldPassword, oldPassword);
+			fail("Shouldn't be able to reuse original (initial) password.")
+		} catch( AuthenticationException e ) {
+			// expected
+		}
 		assertTrue(user.verifyPassword(password2));
 		assertFalse(user.verifyPassword("badpass"));
 	}

Original file line number	Diff line number	Diff line change
`@@ -163,6 +163,13 @@ public void testChangePassword() throws Exception {`
`163`	`163`	`} catch( AuthenticationException e ) {`
`164`	`164`	`// expected`
`165`	`165`	`}`
	`166`	`+ try {`
	`167`	`+ // Test for GitHub issue 288`
	`168`	`+ user.changePassword(password2, oldPassword, oldPassword);`
	`169`	`+ fail("Shouldn't be able to reuse original (initial) password.")`
	`170`	`+ } catch( AuthenticationException e ) {`
	`171`	`+ // expected`
	`172`	`+ }`
`166`	`173`	`assertTrue(user.verifyPassword(password2));`
`167`	`174`	`assertFalse(user.verifyPassword("badpass"));`
`168`	`175`	`}`