Provide a test when updating the users password

[jason-p-pickering]

Before updating a users password, it should be possible to login with the current password (HTTP 200 on /api/me).

Using the current password, it should be possible to update the password with a new valid password (at least 8 characters).

When the password has been updated, it should be able to login with the new password (HTTP 200).

When the password has been updated, it should not be able to login with the old password (HTTP 401).

Using the newly updated valid password, it should not be possible update the password with an invalid password (less than 8 characters). (HTTP ?)

[pgracio]

Using the current password, it should be possible to update the password with a new valid password (at least 8 characters).

Is this a scenario where a user tries to change his own password?

should not be possible update the password with an invalid password:
Error: could not find path 'importCount.updated' in object {"httpStatus":"Conflict","httpStatusCode":409,"status":"ERROR","message":"You must have permissions to create user, or ability to manage at least one user group for the user."}