You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: content/operate/rs/security/access-control/manage-passwords/rotate-passwords.md
+19-10Lines changed: 19 additions & 10 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -41,37 +41,46 @@ The new password cannot already exist as a password for the user and must meet t
41
41
42
42
## Rotate password
43
43
44
-
To rotate your password:
44
+
To rotate passwords:
45
45
46
-
1. Add an additional password to your password list with [`POST /v1/users/password`]({{< relref "/operate/rs/references/rest-api/requests/users/password#add-password" >}}). You must provide the relevant username and current password for [basic authentication]({{<relref "/operate/rs/references/rest-api#authentication">}}) credentials when you send the request.
46
+
1. Add an additional password to a user's password list with [`POST /v1/users/password`]({{< relref "/operate/rs/references/rest-api/requests/users/password#add-password" >}}).
47
47
48
48
```sh
49
49
POST https://<host>:<port>/v1/users/password
50
-
{ "new_password": "<a_new_password>" }
50
+
{
51
+
"username": "<target_username>",
52
+
"new_password": "<a_new_password>"
53
+
}
51
54
```
52
55
53
-
After you send this request, you can authenticate with both the old and the new password.
56
+
After you send this request, the user can authenticate with both the old and the new password.
54
57
55
58
1. Update the password in all database connections that connect with the user account.
56
-
1. Delete the original password with [`DELETE /v1/users/password`]({{< relref "/operate/rs/references/rest-api/requests/users/password#update-password">}}):
59
+
1. Delete the original password with [`DELETE /v1/users/password`]({{< relref "/operate/rs/references/rest-api/requests/users/password#delete-password">}}):
57
60
58
61
```sh
59
62
DELETE https://<host>:<port>/v1/users/password
60
-
{ "old_password": "<an_existing_password>" }
63
+
{
64
+
"username": "<target_username>",
65
+
"old_password": "<existing_password_to_delete>"
66
+
}
61
67
```
62
68
63
69
If there is only one valid password for a user account, you cannot delete that password.
64
70
65
71
## Replace all passwords
66
72
67
-
You can also replace all existing passwords foryour user account with a single password that does not match any existing passwords.
73
+
You can also replace all existing passwords fora user account with a single password that does not match any existing passwords.
68
74
This can be helpful if you suspect that your passwords are compromised and you want to quickly resecure the account.
69
75
70
-
To replace your passwords, use [`PUT /v1/users/password`]({{< relref "/operate/rs/references/rest-api/requests/users/password#delete-password">}}). You must provide the relevant username and current password for [basic authentication]({{<relref "/operate/rs/references/rest-api#authentication">}}) credentials when you send the request.
76
+
To replace a user's passwords, use [`PUT /v1/users/password`]({{< relref "/operate/rs/references/rest-api/requests/users/password#update-password" >}}).
71
77
72
78
```sh
73
79
PUT https://<host>:<port>/v1/users/password
74
-
{ "new_password": "<a_new_password>" }
80
+
{
81
+
"username": "<target_username>",
82
+
"new_password": "<a_new_password>"
83
+
}
75
84
```
76
85
77
-
After this request, all of your existing passwords are deleted and only the new password is valid.
86
+
After this request, all of the user's existing passwords are deleted and only the new password is valid.
0 commit comments