From Bright Pattern Documentation
< 5.19:Identity-provider-api-specification
Revision as of 04:02, 29 May 2024 by BpDeeplTranslateMaintenance (talk | contribs) (Updated via BpDeleteTranslateTags script)
ChangePassword
This method performs a password change. ChangePassword does not log in the user, require a valid session, or create a new session.
HTTP Method
POST
Request
session_change_password(username, tenant, old password, new password)
Example
POST /session_change_password HTTP/1.1 {"domain":"example.com", "username":"tony.cobb", "password":"password", "newpassword":"aaa"}
Responses
A success response includes the "200 OK".
An error response is returned with a 4xx HTTP response code and a JSON body containing detailed error information.
Code | Description | Example |
200 | OK |
HTTP/1.1 200 OK |
401 | not authenticated |
{ “error”: “authentication_failed” } - invalid old password |
403 | access denied |
{ “error”: “weak_password” } - too simple or too recent |