Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-3877

Changing password through new REST endpoint fails if default AuthN chain needs more than just the password to authenticate

    Details

    • Support Ticket IDs:

      Description

      When changing password through the new REST interface, the IdentityResource#checkValidPassword method tries to authenticate the user in the realm (using the default chain for the realm), but does not have access to the AuthN context. If the authentication needs anything else than the username/oldpassword (e.g. historical IP address in adaptive risk module), the authentication fails and the password can not be changed.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                peter.major Peter Major [X] (Inactive)
                Reporter:
                nathalie.hoet Nathalie Hoet
              • Votes:
                0 Vote for this issue
                Watchers:
                8 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 3h
                  3h