[midPoint] End-user "Change Password" custom web component
Gustavo J Gallardo
ggallard at identicum.com
Fri Jul 1 19:50:38 CEST 2016
Hi all,
we are running midPoint 3.4 and our customer has an existing web portal
where they want to maintain all end-user interaction.
They are building a component to allow end-users to change their passwords.
We would like them to use the REST API. From the portal, they will have the
username from the session and present a form to ask the user's old_password
and new_password.
Our idea so far:
1) Grant our end-users a custom role with
http://midpoint.evolveum.com/xml/ns/public/security/authorization-rest-3#all
authorization, in addition to the minimum requirements to change his own
credentials and it's shadow's credentials.
2) use http://xxxxx/midpoint/ws/rest/users/search, to find the user by name
and parsing the XML result to get his oid.
3) use http://xxxxxx/midpoint/ws/rest/users/{user_oid} to POST an
objectModification to set credentials/password
(both REST calls would use username:old_password for authorization)
Is this the correct approach? Is there any better/easier way to achieve
this?
Thanks,
GJG
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20160701/950a65c1/attachment.htm>
More information about the midPoint
mailing list