24.1 About the Forgot Password Web Service

The Forgot Password Web Service exposes a small set of actions from the Password Management system. The service allows remote clients to retrieve information about the forgot password configuration. In addition, it allows clients to retrieve information about the forgot password settings for a particular user, and perform challenge response and change password operations for a user.

The Forgot Password Web Service does not support the full range of password self-service operations. The Forgot Password Web Service is only for forgot password operations. If you want to create a custom user interface for performing password self service functions, such as answering or updating the user’s hint or answer, or updating the challenge response questions, or checking on the password policy status, you need to use the new REST endpoints that have been added to RBPM 3.7.

Calls to the Forgot Password Web Service require HTTP authentication.

24.1.1 Accessing the Service

You can access the Forgot Password Web Service endpoint using a URL similar to the following:

http://server:port/warcontext/pwdmgt/service

For example, if your server is named “myserver”, your User Application is listening on port 8080, and your User Application war file is named “IDMPROV”, the URL would be:

http://myserver:8080/IDMPROV/pwdmgmt/service

NOTE:The URL for the Forgot Password Web Service can be changed on the Forgot Password Settings page on the Administration tab in the User Application. To change the URL, enter the new URL in the Forgot Password Web Service URL field at the bottom of the page.

24.1.2 Accessing the WSDL

You can access the WSDL for the Forgot Password Web Service using a URL similar to the following:

http://server:port/warcontext/pwdmgt/service?wsdl

For example, if your server is named “myserver”, your User Application is listening on port 8080, and your User Application war file is named “IDMPROV”, the URL would be:

http://myserver:8080/IDMPROV/pwdmgt/service?wsdl