Password

The MyAccount Password API provides operations to enroll, update, and delete passwords.

Note: Super admins can enable the IDP MyAccount API password feature. See Enable self-service features.

API versioning

A valid API version in the Accept header is required to access the API. Current version: 1.0.0

Accept: application/json; okta-version=1.0.0

Retrieve a Password
OAuth 2.0: okta.myAccount.password.read

Retrieves the current user's password status

Note: This request only returns information about the password, not the password itself.

Responses
200

Example response

401

Unauthorized

get/idp/myaccount/password
Request samples
Response samples
application/json;okta-version=1.0.0
{
  • "id": "00T196qTp3LIMZQ0L0g3",
  • "status": "ACTIVE",
  • "created": "2020-01-14T20:05:32.000Z",
  • "lastUpdated": "2020-01-14T20:05:32.000Z",
  • "_links": {}
}

Create a Password
OAuth 2.0: okta.myAccount.password.manage

Creates and enrolls a password for the current user

Request
Request Body schema: application/json

New password

required
object

Defines the password on the profile

password
required
string
Responses
201

Example response

400

Bad Request

401

Unauthorized

403

Conflict

post/idp/myaccount/password
Request samples
application/json
{
  • "profile": {
    • "password": "Abcd1234"
    }
}
Response samples
application/json;okta-version=1.0.0
{
  • "id": "00T196qTp3LIMZQ0L0g3",
  • "status": "ACTIVE",
  • "created": "2020-01-14T20:05:32.000Z",
  • "lastUpdated": "2020-01-14T20:05:32.000Z",
  • "_links": {}
}

Replace a Password
OAuth 2.0: okta.myAccount.password.manage

Replaces the password for the current user

Request
Request Body schema: application/json

New password

required
object

Defines the password on the profile

password
required
string
Responses
201

Example response

400

Bad Request

401

Unauthorized

403

Forbidden

put/idp/myaccount/password
Request samples
application/json
{
  • "profile": {
    • "password": "Abcd1234"
    }
}
Response samples
application/json;okta-version=1.0.0
{
  • "id": "00T196qTp3LIMZQ0L0g3",
  • "status": "ACTIVE",
  • "created": "2020-01-14T20:05:32.000Z",
  • "lastUpdated": "2020-01-14T20:05:32.000Z",
  • "_links": {}
}

Delete a Password
OAuth 2.0: okta.myAccount.password.manage

Deletes the current user's enrolled password

Responses
204

No Content

401

Unauthorized

404

Not Found

delete/idp/myaccount/password
Request samples
Response samples
application/json;okta-version=1.0.0
{
  • "errorCode": "E0000015",
  • "errorSummary": "You do not have permission to access the feature you are requesting",
  • "errorLink": "E0000015",
  • "errorId": "oaeStOuPPxDRUm3PJhf-tL7bQ",
  • "errorCauses": [ ]
}