Authenticating IDCS Web Services in VBCS Application
Content
Hi,
I have a VBCS application where I want to implement the password reset functionality. For this, I am using three REST web services for IDCS:
(1) <IDCS endpoint>/oauth2/v1/token: To get the OAuth2 token.
(2) <IDCS endpoint>/admin/v1/PasswordAuthenticator: To authenticate the current password of the user.
(3) <IDCS endpoint>/admin/v1/UserPasswordChanger/{id}: To change the password.
For (1) I am using a basic authentication since I am not able to figure out how to use a more secured option to do that. For (2) and (3), I need to pass the generated OAuth2 token in the first step. In POSTMAN, I can pass this easily, but I am not able to do this in VBCS without adding a dynamic authorization header to the service connection, which is again, insecure when you're trying to change your password.