Password Expiry

Answered

Comments

3 comments

  • Avatar
    Sixto Garcia

    The delegate-authentication API (deprecated) returns the following errors:

    • "User not found"
    • "User not active"
    • "User locked"
    • "Account not found"

    There is no specific error for password expiration.

    0
    Comment actions Permalink
  • Avatar
    OneLogin Stephen

    Thanks for the follow up. Looks like this hasn't made its way into the latest version of the API. Whilst this functionality meets my requirement, I'm put off by the statement attached to the documentation you referenced saying "Don't worry, these APIs are deprecated, but they won't be shut off until 2017, at the earliest".

    0
    Comment actions Permalink
  • Avatar
    OneLogin Stephen

    So I just tested password expiry within the latest v1 REST API and it is supported - just not documented. If you try and carryout delegated authentication for a user who must change their password on next logon (i.e. its expired) the following response is returned.

    {
      "status": {
        "type": "Unauthorized",
        "code": 401,
        "message": "Password expired",
        "error": true
      }
    }

    0
    Comment actions Permalink

Please sign in to leave a comment.