[keycloak-user] Getting a user's CredentialRepresentation via the REST API
Firoz Ahamed
firozpalapra at outlook.com
Thu Feb 21 12:48:11 EST 2019
Hi,
I believe the credentials are stored one way hashed in the keycloak DB and cannot be decrypted.
Are you trying to get the hashed credential ? I believe the user representation does not return this in the GET calls.
Regards,
Firoz
Sent from Mail<https://go.microsoft.com/fwlink/?LinkId=550986> for Windows 10
________________________________
From: keycloak-user-bounces at lists.jboss.org <keycloak-user-bounces at lists.jboss.org> on behalf of Doswald Alistair <alistair.doswald at elca.ch>
Sent: Thursday, February 21, 2019 3:17:30 PM
To: keycloak-user
Subject: [keycloak-user] Getting a user's CredentialRepresentation via the REST API
Hello,
I've been looking to get a user's CredentialRepresentation(s) via the REST API but it doesn't seem possible. Getting the UserRepresentation doesn't get the user's credentials and I haven't found another function (this is with Keycloak 4.8.3.Final).
Am I missing something? Or if not is this a bug (credentials should be sent with the UserRepresentation) or a design decision (sending credentials over the REST API would be a security flaw).
Best regards,
Alistair Doswald
_______________________________________________
keycloak-user mailing list
keycloak-user at lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
More information about the keycloak-user
mailing list