Requiring Password Change After Expiry
Function
During the calling of the API for login with a password, if the password is about to expire or has already expired and the API for requiring password change after expiry is called, the corresponding state_token must be transferred.
URI
POST /api/v2/sdk/pwd/update
Request Parameters
|
Parameter |
Mandatory |
Type |
Description |
|---|---|---|---|
|
Content-Type |
Yes |
String |
Set this field to "application/json;charset=utf8". |
|
X-operating-sys-version |
Yes |
String |
Caller OS version, for example, Android 10. |
|
X-device-fingerprint |
Yes |
String |
Caller device fingerprint, for example, 156aysdna213sc50. |
|
X-device-ip |
No |
String |
Caller IP address, for example, 10.10.10.1 |
|
X-agent |
Yes |
String |
User agent information, for example, Mozilla/5.0 (Linux; Android 10; Redmi K30 Build/QKQ1.190825.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/80.0.3987.99 Mobile Safari/537.36 |
|
X-L |
No |
String |
Language type, for example, en. |
|
X-client-id |
Yes |
String |
Application ID, which is a ClientId allocated to an application after registration. |
|
X-state-token |
Yes |
String |
Temporary token, which is the returned state_token when the API for login with a password is called and the password is about to expire or has already expired. |
|
X-tenant-id |
No |
String |
Tenant ID. This parameter is mandatory when calling an ISV application. Replace "{domain_name}" with the ISV common domain name "{common_domain}". In the request header, specify tenant_id of the corresponding tenant and replace X-client-id with client_id of the ISV application template. |
|
Parameter |
Mandatory |
Type |
Description |
|---|---|---|---|
|
old_password |
Yes |
String |
Original password of the user. |
|
new_password |
Yes |
String |
New password. |
Response Parameters
Status code: 200
|
Parameter |
Type |
Description |
|---|---|---|
|
status |
String |
Login process status identifier. |
|
session_token |
String |
User session_token, which can be used to call the SSO API to obtain sso_ticket. User information can be obtained using sso_ticket. |
|
id_token |
String |
It is essentially a JWT token that contains user identity information. The token is valid for 2 hours by default and its validity period can be configured. |
|
expire |
Integer |
session_token validity period. Unit: second. Within the validity period, ticket can be obtained using session_token. |
Status code: 400
|
Parameter |
Type |
Description |
|---|---|---|
|
error_code |
String |
Error code. |
|
error_msg |
String |
Error details. |
Example Requests
The password must be changed after it expires.
POST https://{domain_name}/api/v2/sdk/pwd/update
X-operating-sys-version: Android 10
X-device-fingerprint: 156aysdna213sac
X-device-ip: 10.10.10.1
X-agent: Mozilla/5.0 (Linux; Android 10; Redmi K30 Build/QKQ1.190825.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/80.0.3987.99 Mobile Safari/537.36
X-L: zh
X-client-id: DRrYIqauawN0I8myTMoDTPys6ezGZxnm
X-state-token: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...
X-tenant-id: 08f770f51f80d2f40f38c00cb199fd21
{
"old_password": "P******d",
"new_password": "P******3"
}
Example Responses
Status code: 200
Request successful.
{
"status" : "SUCCESS",
"expire" : 43200,
"session_token" : "LGT******sqa"
}
Status Codes
|
Status Code |
Description |
|---|---|
|
200 |
Request successful. |
|
400 |
Invalid parameter. |
Error Codes
See Error Codes.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
