Hi Stian,

I was referring to a potential API endpoint which actually sends out the password reset email (there's a similar API which sends out the registration email), not the existing one which just resets the password.


Regards,
Lohitha.

On Mon, Feb 1, 2016 at 3:53 PM, Stian Thorgersen <sthorger@redhat.com> wrote:


On 28 January 2016 at 08:41, Lohitha Chiranjeewa <kalc04@gmail.com> wrote:
Thanks Fabricio, will check on how we can proceed with such an implementation.

Since there is an already existing registration-email API, I thought it's consistent from Keycloak's perspective to expose a reset-password API as well...

Not sure what you refer to, but there are no APIs for these actions outside of the admin endpoints.
 


Regards,
Lohitha.

On Thu, Jan 28, 2016 at 2:31 AM, Fabricio Milone <fabricio.milone@shinetech.com> wrote:
Hi Lohitha,

I had the same requirements (Direct grant + forgotten password) and ended up implementing a SPI using some piece of code made by Pedro Igor.

An extract of the DEV Mailing list called: "Add custom REST paths? New SPI?"

It is part of a working in progress around fine-grained authorization [1].
The new SPI changes [2] specific to Keycloak are located in a specific branch [3] in my Keycloak fork. 

I need to discuss these changes with Bill and see what he thinks about it. Depending on his feedback, I can prepare a PR and send these changes to upstream. 

[1] https://github.com/pedroigor/keycloak-authz
[2] https://github.com/pedroigor/keycloak/commit/5e99614aacb70f7840a5ae25cfeaf3fc9d74ac54
[3] https://github.com/pedroigor/keycloak/tree/keycloak-authz-modified


Not sure if Keycloak will ever adopt those changes as official or something similar though.

That's a good starting point.

Regards

On 27 January 2016 at 21:19, Stian Thorgersen <sthorger@redhat.com> wrote:
There is in the admin endpoints, but nothing that's available to end-users.

On 22 January 2016 at 06:45, Lohitha Chiranjeewa <kalc04@gmail.com> wrote:
Hi,

There are a few clients of ours who use the Direct Grants API to authenticate their users. A requirement has come up to provide the Reset Password flow to those clients. From what I've checked and gathered, there's no REST API to initiate this flow (sending the Keycloak password reset email + resetting the password through the UI); only way to do is through the browser.

If it's actually there somewhere, can someone point me to it?


Regards,
Lohitha.

_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user


_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user



--
Fabricio Milone
Developer

Shine Consulting 

30/600 Bourke Street

Melbourne VIC 3000

T: 03 8488 9939

M: 04 3200 4006


www.shinetech.com  a passion for excellence