61 event.event(EventType.UPDATE_PASSWORD);
63 UserCredentialModel cred = UserCredentialModel.password(update.getCurrentPassword());
66 return ErrorResponse.error(Messages.INVALID_PASSWORD_EXISTING, Response.Status.BAD_REQUEST);
69 if (update.getNewPassword() == null) {
70 return ErrorResponse.error(Messages.INVALID_PASSWORD_EXISTING, Response.Status.BAD_REQUEST);
73 String confirmation = update.getConfirmation();
74 if ((confirmation != null) && !update.getNewPassword().equals(confirmation)) {
75 return ErrorResponse.error(Messages.NOTMATCH_PASSWORD, Response.Status.BAD_REQUEST);
79 session.userCredentialManager().updateCredential(
realm,
user, UserCredentialModel.password(update.getNewPassword(),
false));
80 }
catch (ModelException e) {
81 return ErrorResponse.error(e.getMessage(), e.getParameters(), Response.Status.BAD_REQUEST);
84 return Response.ok().build();
final UserModel user
Definition: AccountCredentialResource.java:29
final KeycloakSession session
Definition: AccountCredentialResource.java:27
final RealmModel realm
Definition: AccountCredentialResource.java:30