* Changes users password.
*/
public User changePassword(User user, String currentPassword, String newPassword) {
user = findUserById(user);
if (!passwordEncoder.isPasswordValid(user.getHashpw(), currentPassword)) {
throw new UpheaException();
}
user.setHashpw(passwordEncoder.encodePassword(newPassword));
return appDao.store(user);
}