Check if a password meets the password policy

POST /api/sign-in-exp/default/check-password

OAuth2

Check if a password meets the password policy in the sign-in experience settings.

application/json

Body Required

password string Required

The password to check.
userId string

The user ID to check the password for. It is required if rejects user info is enabled in the password policy.

Responses

200 application/json

The password meets the password policy.
One of:
object-1 object object-2 object
Hide attribute Show attribute

result boolean(true) Required
Hide attributes Show attributes

result boolean(false) Required

issues array[object] Required

Hide issues attributes Show issues attributes object

code string Required

interpolation object
400

The password does not meet the password policy or no user ID provided.
401

Unauthorized
403

Forbidden

POST /api/sign-in-exp/default/check-password

curl \
 -X POST https://[tenant_id].logto.app/api/sign-in-exp/default/check-password \
 -H "Authorization: Bearer $ACCESS_TOKEN" \
 -H "Content-Type: application/json" \
 -d '{"password":"string","userId":"string"}'

Request examples

{
  "password": "string",
  "userId": "string"
}

Response examples (200)

{
  "result": true
}

{
  "result": true,
  "issues": [
    {
      "code": "string",
      "interpolation": {}
    }
  ]
}