In one of my scenario ,that is change password section, first I need to check the user entered current password is correct or not ? only need to give permission for change password if the old password is correct.
How can I check the password entered is correct with out creating token again ?
Is there any other api for this?
@monika.prakash, welcome back!
Given Auth0 doesn’t expose the user’s password, there may not be any way around this other than doing something like outlined in this post:
Found this community thread while I was searching for something else. While Auth0 does not expose the user’s password, you may use the Resource Owner Password Grant to verify the user’s password for sensitive tasks.
The actual usage of the password grant is to obtain an access token for the user. However, you can to send the incoming user’s password to the /oauth/token endpoint and if you get back a token, that means the entered password is correct.
Please note that Resourc…
Hope this helps!
I need to confirm that there is any other method other than
Now I got confirmed.
Thank you for your response