[keycloak-user] Add required action "Update Password" to all users after Password Policy change

Thu Jan 4 15:23:35 EST 2018

I was looking for a shortcut rather than invoking the REST API for each individual user, which is what I ended up doing in a quick utility.

The documentation seems to indicate a new feature would be added soon and/or in the future.  Guess I was hoping it already existed and hadn't made it into the docs yet.

Thanks,
-Stephen Hoffman

----- Original Message -----
From: "Marek Posolda" <mposolda at redhat.com>
To: "Steve Hoffman" <s.hoffman at xsb.com>, "keycloak-user" <keycloak-user at lists.jboss.org>
Sent: Thursday, January 4, 2018 5:44:13 AM
Subject: Re: [keycloak-user] Add required action "Update Password" to all users after Password Policy change

I guess you can go to tab "Required actions" in the admin console and 
switch the checkbox for "Update Password" required action to "default" . 
Then all new users should automatically be added to this action AFAIK.

If it's not sufficient, the easiest is likely really to update each user 
and manually add requiredAction to him. I would do it with admin REST API.

Marek

On 03/01/18 17:39, Steve Hoffman wrote:
> Currently updating the Password Policy for a realm, and I was looking for an easier (safer) way of forcing users to update password on login once we've set our new preferences.
>
> I'm aware that I can iterate through the users in the admin console (time/cost prohibitive) or POST/Update to the Admin REST API for each individual user after a GET for the user list.
>
> Is there another simpler built-in mechanism that I'm overlooking?
>
> Thanks,
> Stephen Hoffman
>
-- 
XSB, Inc

Office (631) 371-8100 Ext. 8128
Mobile (631) 579-9857
Fax (631) 382-8228

http://www.xsb.com/ 

DISCLAIMER:
This e-mail is intended for the use of the addressee(s) only and may contain privileged, confidential, or proprietary information that is exempt from disclosure under law. If you are not the intended recipient, please do not read, copy, use or disclose the contents of this communication to others.

Please notify the sender that you have received this e-mail in error by replying to the e-mail. Please then delete the e-mail and destroy any copies of it. Thank you.