enforce password change if password is changeme

routes/main.py

@@ -1,6 +1,7 @@
 from flask import render_template, Blueprint, redirect, url_for, request, flash, Response
 from flask_login import current_user, login_required
 from models import User, db, Room, RoomFile, RoomMemberPermission, SiteSettings
+from routes.auth import require_password_change
 import os
 from werkzeug.utils import secure_filename
 from sqlalchemy import func, case, literal_column, text
@@ -26,13 +27,14 @@ def init_routes(main_bp):
         return dict(site_settings=site_settings)
 
     @main_bp.route('/')
+    @login_required
+    @require_password_change
     def home():
-        if not current_user.is_authenticated:
-            return redirect(url_for('auth.login'))
         return redirect(url_for('main.dashboard'))
 
     @main_bp.route('/dashboard')
     @login_required
+    @require_password_change
     def dashboard():
         logger.info("Loading dashboard...")
         # Get 3 most recent users
@@ -265,6 +267,7 @@ def init_routes(main_bp):
 
     @main_bp.route('/profile', methods=['GET', 'POST'])
     @login_required
+    @require_password_change
     def profile():
         if request.method == 'POST':
             # Handle profile picture removal
@@ -321,16 +324,19 @@ def init_routes(main_bp):
 
     @main_bp.route('/starred')
     @login_required
+    @require_password_change
     def starred():
         return render_template('starred/starred.html')
 
     @main_bp.route('/conversations')
     @login_required
+    @require_password_change
     def conversations():
         return redirect(url_for('conversations.conversations'))
 
     @main_bp.route('/trash')
     @login_required
+    @require_password_change
     def trash():
         return render_template('trash/trash.html')