From 3d0e0db4033cbeeb64ca398444b60e7fe8118d34 Mon Sep 17 00:00:00 2001
From: "damien.rabois" <damien.rabois@abc-culture.fr>
Date: Fri, 19 Jan 2024 14:46:36 +0100
Subject: [PATCH] fix: redirect to password_change only when the password
 expired

---
 password_rotate/signals.py | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/password_rotate/signals.py b/password_rotate/signals.py
index 29a9c47..7836810 100644
--- a/password_rotate/signals.py
+++ b/password_rotate/signals.py
@@ -9,10 +9,12 @@
 
 
 def redirect_to_change_password(sender, request, user, **kwargs):
-    messages.error(request, "Password must be changed.")
-    # set flag for middleware to pick up
-    request.redirect_to_password_change = True
-    print("set")
+    checker = PasswordChecker(request.user)
+    if checker.is_expired():
+        messages.error(request, "Password must be changed.")
+        # set flag for middleware to pick up
+        request.redirect_to_password_change = True
+        print("set")
 
 
 def create_user_handler(sender, instance, created, **kwargs):