Updating a password

Request

To reset the password on an account, the CRM should send a PUT request to:

https://<host>:<port>/adm/v1/accounts/preHashedPassword/{uid}

In deployments that use NAGRA's Security Services Platform (SSP), this request must be made twice – once to OPF, and once to SSP.

The URLs of the two endpoints will be provided to you by NAGRA.

Headers

• x-correlation-id – identifier for logging, to correlate messages across a call flow

• Authorization – bearer token obtained in Getting an access token

• nv-tenant-id – the tenant ID

• Content-Type: application/json

Mandatory arguments

• uid – the unique account ID (in URL), which is returned when you create an account

• password – the new, pre-hashed password

  

  The CRM must use the following password hashing configuration:

  • Algorithm: pkcs5_pbkdf2 
  • Hashed password byte length: 320
  • Iterations: 20000
  • SHA strength: hmac_sha1 
• salt – the Base64-encoded byte-array salt used during the password salting process

Other arguments

See PUT /v1/accounts/preHashedPassword/{uid } in the Account and Device Manager (ADM) API documentation.

Response

A successful request returns an HTTP 200 status.

A bad request returns an HTTP 400 status.

If the token is invalid, an HTTP 403 status is returned

If the tenant or account does not exist, the request returns an HTTP 404 status.

Example

{
  "matchedCount": 1,
  "modifiedCount": 1
}

See also

For full details of this API, see Account and Device Manager (ADM) API documentation.