[keycloak-user] Is there a REST Admin API to initiate the Reset Password flow?
Lohitha Chiranjeewa
kalc04 at gmail.com
Thu Jan 28 02:41:38 EST 2016
Thanks Fabricio, will check on how we can proceed with such an
implementation.
Since there is an already existing registration-email API, I thought it's
consistent from Keycloak's perspective to expose a reset-password API as
well...
Regards,
Lohitha.
On Thu, Jan 28, 2016 at 2:31 AM, Fabricio Milone <
fabricio.milone at shinetech.com> wrote:
> Hi Lohitha,
>
> I had the same requirements (Direct grant + forgotten password) and ended
> up implementing a SPI using some piece of code made by Pedro Igor.
>
> An extract of the DEV Mailing list called: "*Add custom REST paths? New
> SPI?*"
>
> *It is part of a working in progress around fine-grained authorization
>> [1].*
>> *The new SPI changes [2] specific to Keycloak are located in a specific
>> branch [3] in my Keycloak fork.*
>
>
>> *I need to discuss these changes with Bill and see what he thinks about
>> it. Depending on his feedback, I can prepare a PR and send these changes to
>> upstream.*
>
>
>>
>> *[1] https://github.com/pedroigor/keycloak-authz
>> <https://github.com/pedroigor/keycloak-authz>*
>> *[2]
>> https://github.com/pedroigor/keycloak/commit/5e99614aacb70f7840a5ae25cfeaf3fc9d74ac54
>> <https://github.com/pedroigor/keycloak/commit/5e99614aacb70f7840a5ae25cfeaf3fc9d74ac54>**[3]
>> https://github.com/pedroigor/keycloak/tree/keycloak-authz-modified
>> <https://github.com/pedroigor/keycloak/tree/keycloak-authz-modified>*
>
>
>
> Not sure if Keycloak will ever adopt those changes as official or
> something similar though.
>
> That's a good starting point.
>
> Regards
>
> On 27 January 2016 at 21:19, Stian Thorgersen <sthorger at redhat.com> wrote:
>
>> There is in the admin endpoints, but nothing that's available to
>> end-users.
>>
>> On 22 January 2016 at 06:45, Lohitha Chiranjeewa <kalc04 at gmail.com>
>> wrote:
>>
>>> Hi,
>>>
>>> There are a few clients of ours who use the Direct Grants API to
>>> authenticate their users. A requirement has come up to provide the Reset
>>> Password flow to those clients. From what I've checked and gathered,
>>> there's no REST API to initiate this flow (sending the Keycloak password
>>> reset email + resetting the password through the UI); only way to do is
>>> through the browser.
>>>
>>> If it's actually there somewhere, can someone point me to it?
>>>
>>>
>>> Regards,
>>> Lohitha.
>>>
>>> _______________________________________________
>>> keycloak-user mailing list
>>> keycloak-user at lists.jboss.org
>>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>>
>>
>>
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>
>
>
>
> --
> *Fabricio Milone*
> Developer
>
> *Shine Consulting *
>
> 30/600 Bourke Street
>
> Melbourne VIC 3000
>
> T: 03 8488 9939
>
> M: 04 3200 4006
>
>
> www.shinetech.com *a* passion for excellence
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160128/b5317822/attachment.html
More information about the keycloak-user
mailing list