Sanjay
Reputation: 2503
Liferay - JAX-RS access forgot password
I have developed JAX-RX using liferay rest module and it is working fine with oauth. I am using that rest for mobile usage. I want use forgot password functionality in mobile and from that I want call rest service. How can I call rest service for forgot password without token?
Upvotes: 1
Views: 136
Answers (1)
Victor
Reputation: 3688
You don't. the token is an essential security feature and it needs to exist. Work around to remove the token might get you in a bad situation where the legitimacy of the client is put in check, even during a session. XSS comes to mind.
Upvotes: 1
Related Questions
- Liferay auto login
- How to get login credentials in liferay?
- Liferay Authorization
- Updating Liferay User Lockout
- Liferay user authentication
- Liferay login using API/Webservices
- Liferay | I lost login portlet
- How to update changed database password in Liferay6.06?
- How to do servlet authentication against Liferay portal DB?
- Decrypt liferay passwords