Merge commit 'e345570210aa0fc8acdb9cf042561f35f00812f0'

userfront/lib/features/profile/data/repositories/profile_repository.dart

@@ -102,6 +102,37 @@ class ProfileRepository {
     }
   }
 
+  Future<void> changePassword({
+    required String currentPassword,
+    required String newPassword,
+  }) async {
+    final token = await _getToken();
+    final useCookie = AuthTokenStore.usesCookie();
+    if (token == null && !useCookie) throw Exception('No active session');
+
+    final url = Uri.parse('$_baseUrl/api/v1/user/me/password');
+    final client = createHttpClient(withCredentials: useCookie);
+    final headers = <String, String>{
+      'Content-Type': 'application/json',
+    };
+    if (!useCookie && token != null) {
+      headers['Authorization'] = 'Bearer $token';
+    }
+    final response = await client.post(
+      url,
+      headers: headers,
+      body: jsonEncode({
+        'currentPassword': currentPassword,
+        'newPassword': newPassword,
+      }),
+    );
+    client.close();
+
+    if (response.statusCode != 200) {
+      throw Exception('Failed to change password: ${response.body}');
+    }
+  }
+
   Future<void> verifyUpdateCode(String phone, String code) async {
     final token = await _getToken();
     final useCookie = AuthTokenStore.usesCookie();