2:51 a.m.
Hello everyone.
I have a question about REST API of the Keycloak. When I attempt to change
password via REST API of user to that password that not meets security
constraints of Keycloak, I recieve BadRequestError without additional
information of what goes wrong. But when I change password in
Administration console I see an exact error.
So, how can I get a exact problem what wrong with my password?
My usecase is that:
I have a frontend (html/css) that communicates with a backend that
communicates with the Keycloak. An user wants to change password of his/her
account so he/she click on button on some form, and makes a request to
backend to change password. A backend processes that request and ask
Keycloak to change user password. In case that password doesn't meet
security constraint I want to provide to user exact error.
Thanks to all.
--
--
Best regards,
Vinogradov Alexey
vinogradov.a.i.93(a)gmail.com
+7 983 311 38 40
5:35 p.m.
Privet, Alexey :)
Here's how password reset is done with Keycloak Admin REST API, assuming password
policy violation:
PUT
http://localhost:8080/auth/admin/realms/master/users/{user-id}/reset-pass...
{"type":"password","value":"foo","temporary":false}
< 400 Bad Request
<
{"error":"invalidPasswordMinLengthMessage","error_description":"Invalid
password: minimum length 8."}
If I understand correctly, you get a javax.ws.rs.BadRequestException from the Java admin
client. You could try calling getResponse().getEntity() on the exception object to obtain
JSON response.
Cheers,
Dmitry Telegin
Carretti Consulting OÜ | Keycloak Consulting and Training
Sepapaja 6, Tallinn 15551, Estonia | info(a)carretti.pro
On Mon, 2019-05-27 at 14:51 +0700, Алексей Виноградов wrote:
Hello everyone.
I have a question about REST API of the Keycloak. When I attempt to change
password via REST API of user to that password that not meets security
constraints of Keycloak, I recieve BadRequestError without additional
information of what goes wrong. But when I change password in
Administration console I see an exact error.
So, how can I get a exact problem what wrong with my password?
My usecase is that:
I have a frontend (html/css) that communicates with a backend that
communicates with the Keycloak. An user wants to change password of his/her
account so he/she click on button on some form, and makes a request to
backend to change password. A backend processes that request and ask
Keycloak to change user password. In case that password doesn't meet
security constraint I want to provide to user exact error.
Thanks to all.
--
3:55 a.m.
Privet Dmitry :)
Thanks for the response.
I have tried to get getResponse().getEntity() but result is null.
--
Best regards,
Vinogradov Alexey
vinogradov.a.i.93(a)gmail.com
+7 983 311 38 40
вт, 28 мая 2019 г., 5:35 Dmitry Telegin <demetrio(a)carretti.pro>:
Privet, Alexey :)
Here's how password reset is done with Keycloak Admin REST API, assuming
password policy violation:
> PUT
http://localhost:8080/auth/admin/realms/master/users/{user-id}/reset-pass...
>
{"type":"password","value":"foo","temporary":false}
< 400 Bad Request
<
{"error":"invalidPasswordMinLengthMessage","error_description":"Invalid
password: minimum length 8."}
If I understand correctly, you get a javax.ws.rs.BadRequestException from
the Java admin client. You could try calling getResponse().getEntity() on
the exception object to obtain JSON response.
Cheers,
Dmitry Telegin
Carretti Consulting OÜ | Keycloak Consulting and Training
Sepapaja 6, Tallinn 15551, Estonia | info(a)carretti.pro
On Mon, 2019-05-27 at 14:51 +0700, Алексей Виноградов wrote:
> Hello everyone.
>
> I have a question about REST API of the Keycloak. When I attempt to
change
> password via REST API of user to that password that not meets security
> constraints of Keycloak, I recieve BadRequestError without additional
> information of what goes wrong. But when I change password in
> Administration console I see an exact error.
>
> So, how can I get a exact problem what wrong with my password?
>
> My usecase is that:
> I have a frontend (html/css) that communicates with a backend that
> communicates with the Keycloak. An user wants to change password of
his/her
> account so he/she click on button on some form, and makes a request to
> backend to change password. A backend processes that request and ask
> Keycloak to change user password. In case that password doesn't meet
> security constraint I want to provide to user exact error.
>
> Thanks to all.
> --
11:23 p.m.
So, thanks to demetrio(a)carretti.pro, my problem has solved by upgrading to
the new version of keycloak-admin-client (4.8.3.Final) and
Resteasy(3.6.3.Final).
Note, that version of keycloak-admin-client (3.4.3.Final) and
Resteasy(3.1.4.Final) has that problem.
--
Best regards,
Vinogradov Alexey
vinogradov.a.i.93(a)gmail.com
+7 983 311 38 40
пн, 27 мая 2019 г., 14:51 Алексей Виноградов <vinogradov.a.i.93(a)gmail.com>:
Hello everyone.
I have a question about REST API of the Keycloak. When I attempt to change
password via REST API of user to that password that not meets security
constraints of Keycloak, I recieve BadRequestError without additional
information of what goes wrong. But when I change password in
Administration console I see an exact error.
So, how can I get a exact problem what wrong with my password?
My usecase is that:
I have a frontend (html/css) that communicates with a backend that
communicates with the Keycloak. An user wants to change password of his/her
account so he/she click on button on some form, and makes a request to
backend to change password. A backend processes that request and ask
Keycloak to change user password. In case that password doesn't meet
security constraint I want to provide to user exact error.
Thanks to all.
--
--
Best regards,
Vinogradov Alexey
vinogradov.a.i.93(a)gmail.com
+7 983 311 38 40
2033
days inactive
2040
days old
3 comments
2 participants
participants (2)
-
Dmitry Telegin -
Алексей Виноградов