From Bright Pattern Documentation
< 5.8:Identity-provider-api-specification
Revision as of 04:13, 29 May 2024 by BpDeeplTranslateMaintenance (talk | contribs) (Updated via BpDeleteTranslateTags script)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
• 5.19 • 5.3 • 5.8

ChangePassword

This method performs a password change. ChangePassword does not log in the user, require a valid session, or create a new session.

HTTP Method

POST

Request

session_change_password(username, tenant, old password, new password)

Example

POST /session_change_password HTTP/1.1
{"domain":"example.com",
"username":"tony.cobb",
"password":"password",
"newpassword":"aaa"}

Responses

A success response includes the "200 OK".

An error response is returned with a 4xx HTTP response code and a JSON body containing detailed error information.

Code Description Example
200 OK
HTTP/1.1 200 OK
401 not authenticated
{ “error”: “authentication_failed” }  - invalid old password
403 access denied
{ “error”: “weak_password” }  - too simple or too recent
< Previous