Open a1994sc opened 7 months ago
Greetings, i would say that is expected behavior wrt to the current logic of the Provider. I'll test it myself and report back to you. However, do you even need update_password, if you have set the Initial password to temporary?
I'll think about how we can solve this issue of continously applied required Actions
Well applying the update password action is fine after creating the user, however it adding that action after the user has set their new password... So they have to keep updating their password every few minutes
Yeah, the question is how we shall differentiate that.
Besides of that, I don't think you need a UPDATE_PASSWORD
required action Object at all, if you are using
initialPassword:
- temporary: true
because the temporary: true
should handle that a user is forced to update their password.
Besides that:
One solution without changing the provider itself would be:
That approach would not work for any GitOps based workflow tho and would require additional changes / selfbuild logic in the provider.
So the instance in question is running on keycloak 21.1.2
but I have another instance running keycloak 22.0.4
and it works fine without the issue of the password resetting... So maybe some in 22 fixed this interaction?
i wonder if we can skip requiredActions
for late-init - its fine to have it status only or ?
this is happening in our keycloak instance in version 24.0.7 , the user required action continuously updates and asks for update_password to all users if we set the temporary field to true , it is mentioned in documentation that If set to true, the initial password is set up for renewal on first use.
please test xpkg.upbound.io/crossplane-contrib/provider-keycloak:v1.5.0-rc
I am using keycloak version
21.1.1
with the providerv0.10.0
and after changing my initial password and waiting a few minutes the actionUPDATE_PASSWORD
is added to the required actions...I tried to see if this was an issue with the upstream terraform provider, but I did not see anything in the issues....
Any help would be awesome, thanks.