🎭 As a returning user, I want to update my account

[unicornware]

Requirements

Functional Requirements

What the product must do.

• Allow users to set and update display name
• Allow users to set and update display photo
• Allow users to update their email address
• Allow users to update their password

Non-Functional Requirements

How the product must behave.

• Authenticate users using JWTs
• Prevent sensitive data exposure
• Prevent unauthorized account updates

Out of Scope

Items that are specifically excluded from this feature.

n/a

Acceptance Criteria

Overall acceptance criteria for the feature.

• Scenario: Successful account update

  • Given an authenticated user
  • When a request is sent to PATCH /accounts/:uid
  • And the :uid parameter references the account of the authenticated user
  • Then send 200 response

• Scenario: Account mismatch

  • Given authenticated user A
  • When a request is sent to PATCH /accounts/:uid
  • And the :uid parameter references the account of user B
  • Then send 403 response

• Scenario: Invalid token

  • Given a user with an invalid token
  • When a request is sent to PATCH /accounts/:uid
  • And the :uid parameter references an existing account
  • Then send 401 response

• Scenario: Missing account

  • Given any user
  • When a request is sent to PATCH /accounts/:uid
  • And the :uid parameter does not reference an existing account
  • Then send 404 response

• Scenario: Missing token

  • Given a user without a token
  • When a request is sent to PATCH /accounts/:uid
  • And the :uid parameter references an existing account
  • Then send 401 response

• Scenario: An unknown error occurs

  • When any request is sent to PATCH /accounts/:uid
  • And an unknown error occurs
  • Then send 500 response