I imported bulk users in WSO2 API manager, but all the users' passwords expired in 24 hours. I had to systematically change each and every user's password a couple days later. How can I avoid this? Is there a way to change the expiration time?
WSO2 API Manager, is it possible to import bulk users without the password expiring after 24 hours?
329 Views Asked by Lilp At
1
There are 1 best solutions below
Related Questions in WSO2
- How to make gRPC request in WSO2 micro-integrator via Postman?
- Following PATTERN 3 Deployment ,Not able to consume apis in Gateway
- WSO2 change localhost - ERR_CERT_AUTHORITY_INVALID
- How to resolve unauthenticated error after calling REST API endpoint to update the Challenge Questions in WSO2 v5.11.0?
- Enable logging for API calls in wso2 identity server
- How to set weight of enpoints durin laod balancing in wso2 manager
- old apikey dont works for newly subscribed apis in wso2 apim
- WSO2 API-M: What is Synapse and why it spits following error: I/O error: Connection reset java.net.SocketException: Connection reset?
- how to upgrade httpcore-nio plugin of wso2 api manager
- Amazon RDS PostgreSQL - Caused by: java.net.UnknownHostException: yyyy.xxx.us-west-1.rds.amazonaws.com in WSO2 EI docker container
- How to Extract Queue Name, Priority, and Message ID from RabbitMQ Inbound Endpoint Messages in WSO2 MI 4.2?
- how do i manage role and permission in server side for my predefined roles and assign permission in wso2 identity server?
- Installation process of wso2 Enterprise integrator
- WSO2 - SSL troubleshooting: ERR_CERT_AUTHORITY_INVALID
- How to do error handling in Clone-Aggregator mediator in WSO2 Micro Integrator?
Related Questions in PASSWORDS
- Forgotten RAR password recovery
- I'm unable to access 'https://github.com/Danniecodjoe/alx-system_engineering-devops.git/':
- How to get new text input after entering a password in a tab?
- invalid application password of gmail
- Auto-complete doesn't work on Chrome or Edge
- Decrypting Magento 2 customer passwords using email for migration to Shopify
- In two subversion repositories (same machine), can I have different usernames with no password prompting?
- Store website username/password on Elinks for Ubuntu
- Sending Password to a PHP Script
- "error": "The public key is required. Visit https://dashboard.emailjs.com/admin/account"
- im stuck trying to guess a password to a server im accessing through netcat for a ctf
- Hashcat / John the Ripper - find password when you know most of password but don't remember the sequence
- Hashing the password if it is not hashed in django
- How do I change I change my redis docker containers password?
- How to detect password protected file in Angular 14+ without using Promise calls
Related Questions in WSO2-API-MANAGER
- How to make gRPC request in WSO2 micro-integrator via Postman?
- Following PATTERN 3 Deployment ,Not able to consume apis in Gateway
- Configuring Keyclock 22.0.4 as a key manager in WSO2 APIM
- How to resolve unauthenticated error after calling REST API endpoint to update the Challenge Questions in WSO2 v5.11.0?
- How to set weight of enpoints durin laod balancing in wso2 manager
- old apikey dont works for newly subscribed apis in wso2 apim
- WSO2 API-M: What is Synapse and why it spits following error: I/O error: Connection reset java.net.SocketException: Connection reset?
- how to upgrade httpcore-nio plugin of wso2 api manager
- how do i manage role and permission in server side for my predefined roles and assign permission in wso2 identity server?
- how to write expression in WSO2 for filter mediator for 200 and other than 200 response codes
- How to disable showing default Axis2 services (https://localhost:8243/services/Version?wsdl) in WSO2 API manager 3.2.0?
- Micro Integrator 4.2.0 maven build - error - Invalid CEN header
- disable soap in wso2 api manager gateway https://IPaddr:9443/services
- the token expires when I generate another token wso2 apim 4.0.0
- WSO2 API Manager(wso2am-4.1.0) - Exposing APIs Using a Virtual Host
Related Questions in BULK-IMPORT
- How can I import data using SSIS from an excel with dynamic columns?
- SQL Server Bulk Import with format file - An unexpected end of file was encountered in the data file
- bulk importing magento
- Alfresco bulk import metadata failed
- How to import data with double quotes in SQL Server 2005
- Bulk importing to SQL Server from a remote data file using UNC paths
- Bulk Import CSV into Cassandra 2.0.3
- How to Bulk import with validations and create versions using paper_trail?
- My values in money column are changed when bulk insert is used
- Python, aws s3 - data with images bulk importing
- Import text file to SQL Server using Bulk Insert
- Trouble with importing CSV into SQL Server using BULK IMPORT when the CSV has formatting errors
- WSO2 API Manager, is it possible to import bulk users without the password expiring after 24 hours?
- Need To Bulk Unchecked categories of products by CSV
- import csv with sporadic text qualifiers into sql server
Related Questions in WSO2-IDENTITY-SERVER
- Enable logging for API calls in wso2 identity server
- how do i manage role and permission in server side for my predefined roles and assign permission in wso2 identity server?
- Login/initiate session in WSO2 Identity Server 5.11.0 without using UI
- Display attribute data in password-recovery-notify.jsp
- wso2 IS - User store connection lost
- JSON string wrapping within another JSON object
- Create Secondary User Store with LDAP in WSO2IS 5.11.0 via deployment.toml
- WSO2 - Security patches link / location
- wso2 api manager throws error with key managers
- WSO2 IS Recovery password / Home
- WSO2 - Identity Server 6.1.0 - Sign in with google
- Updating Client Application using DCR endpoint not working in WSO2 IS V6?
- WSO2 Identity Server SCIM API to retrieve a list of Groups
- WSO2 Identity Server updating SP/IDP error 6.1.0
- I wanted to use ISO8583 mediator but I am facing the following error
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
According to the implementation of the Bulk User Import feature, it sets "requirePasswordChange" to true when adding the users and it is not configurable. (Ref [1], [2]). Then, during the authentication [3], it checks for this flag and fails the authentication if the last password set time (UM_CHANGED_TIME column of UM_USER table) is older than 24hours.
One solution would be writing a custom userstore manager to override this property and set it to false always when adding users. Further described in [4].
One other hack would be directly removing this password expiry property for all the users from the userstore database directly. You can simply set "UM_REQUIRE_CHANGE" value for all the users to make their passwords work even after 24hours.
[1] https://github.com/wso2/carbon-identity-framework/blob/master/components/user-mgt/org.wso2.carbon.user.mgt/src/main/java/org/wso2/carbon/user/mgt/bulkimport/CSVUserBulkImport.java#L178
[2] https://github.com/wso2/carbon-kernel/blob/4.4.x/core/org.wso2.carbon.user.core/src/main/java/org/wso2/carbon/user/core/common/AbstractUserStoreManager.java#L2707
[3] https://github.com/wso2/carbon-kernel/blob/4.4.x/core/org.wso2.carbon.user.core/src/main/java/org/wso2/carbon/user/core/jdbc/JDBCUserStoreManager.java#L1232-L1240
[4] https://stackoverflow.com/a/47976366