In G-suite, all sessions for a user can be terminated by the admin using "Reset Sign-In Cookies" option in UI.
Is there a REST API exposed to do the same?
Or any other way to achieve this programatically?
Related
In the keycloak administration, if I set the "Required User Action" of a user to "Update Password". The user is asked for a new password after a successful login, calling:
https://SERVER/auth/realms/REALM/login-actions/required-action?execution=UPDATE_PASSWORD&client_id=CLIENT_ID&tab_id=TAB_ID
Calling this URL with a user logged-in but not configured "Update Password" I get a message "User is already logged in".
What would be the correct URL to call from an external application, e.g. from a menu with actions edit-profile, change-password...
Edit: In our application we authenticate users managed in keycloak. We would like to be able to link a keycloak page (similar as the one posted) where the user can update/change his password (e.g. old-pw, new-pw, confirm-pw).
This answer is based on Keycloak 12 (latest version at the time of writing the answer)
You can ask users to change their profile details or passwords from the manage account section. You can get the URL of that screen and direct users to that.
"manage account" link location
Account management screen
For user registration accessible on browser or app, we're considering using Facebook Login. To enhance the security and data privacy, we are considering requiring that only those users who have enabled 2FA or MFA on their Facebook accounts can use Facebook Login service.
Is there an existing method to do this?
Check if 2FA or MFA is enabled for a certain error?
IF disabled, either:
a. Callback error (with sample meesage "2FA not enabled on current account")
b. Request user in Facebook to enable 2FA then proceed with FB Login
Other suggested alternatives would be appreciated.
Thanks!
I am using yammer embed control with SSO true (use_sso = true), it is working fine with windows credential it is automatically login to Yammer.
Now to track whether user logged to Yammer or not I am using yam.platform.getLoginStatus.
So here I want to check user login status just after yammer embed sso done its job. So do we have any event to track whether automatically SSO done and user logged in so that I can do other operation based on it?
Or do we have any other way from API to combine Yammer SSO checks.
Also SSO is only available as configuration for Embed control only. Can we use with other controls “Like” and “Follow” controls?
Within my facebook account, I see on my "App Settings" page here: https://www.facebook.com/settings?tab=applications that I have several "apps you use" such as: tripadvisor and 8tracks
How do I get my facebook "user access token" for each of those apps?
I don't own those apps, but surely I can retrieve my own personal "User access token" for each of the apps within my facebook account, right?
No - you can not do this. The access token is the association between your user and the application. It "belongs" to you just as much as it belongs to the application.
Think of it this way - if you were to obtain that access token, you would be able to perform actions as if it were the application performing those actions on your behalf. Any action performed using that token would be attributed to the application. You could "spam yourself" and any reports would be directed at the application that created that content.
The tokens are used for security - not only for your security but also of the application.
Is there any facebook API that can make a call to my server when a user removes an application from his/her account?
I want my application to be notified when a user removes my facebook application from his/her account.
I am just wondering if facebook provides this kind of feature.
Thanks.
Facebook provides this feature.
Go to http://developers.facebook.com/apps
Edit Your App
Go to Settings > Advanced
Look for Deauthorise Callback URL: in the authentication panel.