[keycloak-user] Getting a user's CredentialRepresentation via the REST API

Firoz Ahamed firozpalapra at outlook.com
Thu Feb 21 12:48:11 EST 2019


I believe the credentials are stored one way hashed in the keycloak DB and cannot be decrypted.

Are you trying to get the hashed credential ? I believe the user representation does not return this in the GET calls.



Sent from Mail<https://go.microsoft.com/fwlink/?LinkId=550986> for Windows 10

From: keycloak-user-bounces at lists.jboss.org <keycloak-user-bounces at lists.jboss.org> on behalf of Doswald Alistair <alistair.doswald at elca.ch>
Sent: Thursday, February 21, 2019 3:17:30 PM
To: keycloak-user
Subject: [keycloak-user] Getting a user's CredentialRepresentation via the REST API


I've been looking to get a user's CredentialRepresentation(s) via the REST API but it doesn't seem possible. Getting the UserRepresentation doesn't get the user's credentials and I haven't found another function (this is with Keycloak 4.8.3.Final).

Am I missing something? Or if not is this a bug (credentials should be sent with the UserRepresentation) or a design decision (sending credentials over the REST API would be a security flaw).

Best regards,

Alistair Doswald
keycloak-user mailing list
keycloak-user at lists.jboss.org

More information about the keycloak-user mailing list