Closed smadbe closed 2 weeks ago
On user pages, if a manager is allowed to edit of another user's profile (through a group he manages), we should display a button to update the password of the user.
Requires
On other's user pages, if the GET /users/:id service has personal_info_access_approval_to_current_user is "edit" (only!):
/users/:id
personal_info_access_approval_to_current_user
"edit"
POST /users/:id/generate-profile-edit-token
<oauthServerUrl>/group_admin/password
client_id
oauthClientId
return_url
token
alg
Overview
On user pages, if a manager is allowed to edit of another user's profile (through a group he manages), we should display a button to update the password of the user.
Notes
Requires
1712 to be done
Acceptance criteria
On other's user pages, if the GET
/users/:id
service haspersonal_info_access_approval_to_current_user
is"edit"
(only!):POST /users/:id/generate-profile-edit-token
service to get a token<oauthServerUrl>/group_admin/password
with as args:client_id
:oauthClientId
from configreturn_url
: the url to return after editiontoken
: the token you've just receivedalg
: the value returned by the service