[keycloak-user] How can user change his password after login?
Stan Silvert
ssilvert at redhat.com
Fri Apr 13 19:21:41 EDT 2018
On 4/13/2018 3:52 PM, Nhut Thai Le wrote:
> The "Required Actions" are used by admin to force user take some actions in
> the next login. What i am asking for is how the user can change his
> password after successfully login. Maybe the user realizes his password has
> been compromised and want to update it.
> I don't want to use the "Forgot Password" link on the login page because
>
> - the user did not forget his password, he just want to change it
> - maybe the user's email is also compromised and cannot access email
> - the link in the password reset email has an expiring time
>
> Thai
See User Account Service:
https://www.keycloak.org/docs/3.2/server_admin/topics/account.html
>
> On Fri, Apr 13, 2018 at 9:48 AM, Sachin Rastogi <sr.misc at gmail.com> wrote:
>
>> Hi,
>>
>> Have you tried to enable "Update Password" under Authentication in
>> "Required Actions". Please ensure that user also have "Update Password" in
>> Required User Actions under respective User.
>>
>> Regards,
>> SR
>>
>>
>>
>>
>>
>>
>>
>> On Wed, Apr 11, 2018 at 5:39 PM, Nhut Thai Le <ntle at castortech.com> wrote:
>>
>>> Hello,
>>>
>>> We are using Keycloak 3.4.3Final for authentication only and we want to
>>> create a link from the application so that user can change their password
>>> after login.
>>> I looked at the forget password flow and see the page
>>> http://localhost:8180/auth/realms/testRealm/login-actions/
>>> required-action?execution=UPDATE_PASSWORD&client_id=
>>> account&tab_id=TI2aayKftXY
>>> is what we need. Is there anyway to generate this link without the time
>>> constraint?
>>>
>>> Thank you
>>>
>>> Thai
>>> _______________________________________________
>>> keycloak-user mailing list
>>> keycloak-user at lists.jboss.org
>>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>>
>>
>
More information about the keycloak-user
mailing list