Allow web app to change user password using access token?

kevcon80 · September 29, 2020, 7:17pm

My team is looking to implement a custom settings page for a web app, which does not have a secure backend to store api tokens. What we would ideally like is a way to send the Okta tenant the username and new password, alongside the user’s access token for authorization, which would then change the password to the new value.

I’ve seen multiple other ways that Okta allows a password change programmatically, but these all seem to involve relying on an api token in some way.

Is there any way to do this currently?

warren · September 29, 2020, 8:56pm

I’m not sure if it’s possible in this use case since it looks like the Okta API endpoints to change/reset the user’s password requires admin permissions. I would assume that the access token would need to be tied to an admin user.

system · January 25, 2024, 12:33am

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.

Post		Replies	Views
Changing password after successful login with Okta API API	3	1975	February 15, 2024
How do I allow customers to change their passwords without an API token? OAuth/OIDC	2	3255	February 8, 2024
Change Password API API	2	5941	February 14, 2024
Update user credentials on app-level API api	5	3973	July 25, 2019
Change password directly without Okta web console Questions	6	3966	February 14, 2022

Allow web app to change user password using access token?

Related topics