We are using RemoteUserStoreManagerService addUser webservice with askPassword option set to true.How to resend this email .Since we are using different templates for Ask Password and Password reset ,we cannot use sendRecoveryNotification api.
What do you mean by different templates ? do you modify existing templates ? You can trigger ask password flow by adding user with empty password.
Thanks
Isura
Related
I need to validate user's email before allowing them to proceed with account creation.
What will be the best way of doing so in Django ?
I was thinking of sending cookies with UUID which will be used during registration.
email_validation_DB:
UUID | Email | Confirmation Code | is_verified
Then, when user will click on register. UUID will be used to get the verified email address from email_validation_DB and proceed with account creation.
Instead of allowing users with only verified emails to proceed, I would suggest that you allow any user to register but activate their account only after they verify their emails.
What you can do is create a hash token and send the email with hash token and a link. When user clicks on the link, you can verify the token and activate the account. Here is a good tutorial about this - https://www.javatpoint.com/django-user-registration-with-email-confirmation
Alternatively, you can use a python package. Here is a good one - https://github.com/LeoneBacciu/django-email-verification. You can also use this package to add additional functionalities around email sending like forgot password etc.
I am integrating WSO2 IS with our node js backend and react js frontend and was successful in performing operatoins for login,sign up & api calls.
Please help me how i can change password of an existing user using any api of wso2 IS ?
Please help
There are different ways to change password in WSO2 Identity server. You can choose it based on your requirements.
Option1:
Admins can do force password reset for a user account. Please refer to this document for configuring the admin forced password reset.
UserProfileMgtService (a soap service) is used for admin forced password reset. Once the admin invoked the soap service, an email link will be sent to the user's email address and user can change the password by clicking on the verification email/OTP.
Option2:
You can do force password reset via scim patch operation also. Refer to this document for further details about scim patch operation.
Do the required configuration for force password reset. Refer to this document for admin forced password recovery
Add a SCIM 2 schema extension for force password reset.
Choose either
'Enable Password Reset via Recovery Email' or 'Enable Password Reset
via OTP'
Try SCIM2 patch operation to enable force password reset for
a user
curl -v -k --user admin:admin --header
"Content-Type:application/json"
'https://localhost:9443/scim2/Users/[scim_user_id]' -X PATCH -d
'{"schemas":
["urn:ietf:params:scim:api:messages:2.0:PatchOp","urn:ietf:params:scim:schemas:extension:enterprise:2.0:User"],"Operations":
[{"op": "add","value":
{"urn:ietf:params:scim:schemas:extension:enterprise:2.0:User":
{"forcePasswordReset": true} }}]}
Option3:
You can use UserAdmin soap service to update the user password. Please refer to the soap service here. In WSO2 dashboard also, this admin service is used. You can use this soap services as rest call also. This will directly change the user's password without sending any email notification or verification.
Option4 :
If you need password recovery, in case of user forgot the password, the user can recover the password via email notification or using challenge questions. Please refer to this document to configure the password recovery feature
Hi i Want in API manager WSO2 in store section after user registered Send email with link to confirm account
am version: 2.5.0
Please Help Me
Your requirement can be achieved through a custom workflow extension. By default there is a custom workflow to the user signup process. You may need to extend that to send an email. Please refer to this.
I want to achieve the following user case:
If the user logged in with a new device, my app will send an email to notify the user and requires the user to enter the code in the email to successfully logged in the app.
The way I thought is to create a custom authentication flow to achieve this, but I cannot find any information about the user login device in defineAuthChallenge and createAuthChallenge. Did I miss something here? Is this the correct way to achieve the user case?
More info about the custom authentication flow:
https://aws.amazon.com/blogs/mobile/customizing-your-user-pool-authentication-flow/
You can try to implement this using the post authentication lambda trigger. This will send you the user login details (except password) when user attempts to sign in.
I'm creating a private app for a customer that are using Shopify as the shopping platform.
At the moment, I'm creating the customers via. the Shopify API (http://docs.shopify.com/api/customer).
It's working perfectly, but i want to customize the email templates for activation account to add an email and password.
Please how can i do that ?
If you need custom control over the account activation email you can create the customer records with send_email_welcome : false and then use the account_activation_url API call to create an account activation url which you could embed in your own fully custom email message.
Why would you want to send a password though? You have no idea whether or not the customer receives email securely and the activation link lets them reset the password anyway.
If you click settings -> notifications in the shop, you'll notice you can edit these outgoing email templates to customers. That is the only way.