HI Kasun, You have to verify the each security questions separately. It can be one, two or any number of security questions. If user is required to answer two questions, then the key for second question is the returned code you get in verifyUserChallengeAnswer for first question. Likewise you can verify any number of questions. After verifying questions you have to call updatePassword method. The returned code of final verifyUserChallengeAnswer is the key for updatePassword method.
Thanks Isura. On Wed, Apr 29, 2015 at 1:46 PM, Kasun De Silva <[email protected]> wrote: > Hi, > > Say I have multiple challenge questions for a particular user. As in > claims "http://wso2.org/claims/challengeQuestion1"; and " > http://wso2.org/claims/challengeQuestion2";. Im invoking is admin services > which are fronted through ESB as rest apis. > > I'm going through following service calls to reset the password for > the above mentioned user. > > 1. getCaptcha() > 2. verifyUser() > 3. getUserChallengeQuestionIds() > 4. getUserChallengeQuestion() > 5. verifyUserChallengeAnswer() > 6. updatePassword() > > Since I have 2 challenge questions what is the correct way of verifying > them before resetting the password. Is there a way to verify all the > challenge questions at once? or do I have to go through one by one ? If so > what is the correct the method flow ? > > Thanks, > > *Kasun de Silva * > Software Engineer | *WSO2 Inc.*; http://wso2.com > lean.enterprise.middleware > > email : [email protected] > mobile : +94 77 794 4260 > > > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > > -- Isura Dilhara Karunaratne Senior Software Engineer Mob +94 772 254 810
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
