Hello,
Can you help me please
I want to compare my password through my app before using it.
Basically I want to decrypt the keycloack user password
That’s not possible.
And also security nonsense.
1 Like
Ah ok
Well, but in truth I have developed an application, however I want to change the password but before I have to enter the current password, and compare it. that is my concern.Can you help me with this please
Leave it up to Keycloak, don’t reimplement things, which don’t belong to your application.
Keycloak will ask the user for the current password (aka re-authentication), if the auth-time is more than 5 minutes ago. You can adjust this time with a password policy. Set it to 0 and Keycloak will always ask the user for the current password, before changing the password.
Excuse me but I still don’t understand,
In my application I want to be able to enter the current password before changing it.
So I’m looking for an API that allows me to do this.
Is it
So you are looking for something like this?
1 Like
So you are asking the same question as Keycloak API Rest - check if password is correct?
A very convoluted way to get to that point, however, the answer by @dasniko still applies. Don’t. Use the required action flow and let Keycloak handle the messing with credentials part.
2 Likes
@ThoreKr
Hello chef, this is exactly what I wanted however, how to redirect to the authentication page after changing the password please?
In the link @ThoreKr posted, there is a blog post linked from me, in this blog post, there is a redirect_uri mentioned…
So, the information you need, is all there!
And if you don’t know about the redirectUri, I recommend to read and learn about OIDC.