When carrying out delegated authentication via the OneLogin API, is there any way in which I can determine whether a failed authentication is due to a password being expired? The documentation for the API makes no mention of this scenario. Perhaps an authentication failure response code/messages for password expiry is return within the 'message' attribute of a 400 - bad request response. Any pointers?
Please sign in to leave a comment.