How to implement signup rest API with password

Ankit_Prajapati · July 20, 2020, 8:07am

Hi, I want to register a user using rest api using this endpoint-

http://127.0.0.1:8000/api/method/frappe.core.doctype.user.user.sign_up/

body-
{
“email":"hello1@yahoo.com”,
“full_name”:“Ankit Prajapati”,
“redirect_to”:“”,
“password”:“Admin@123”
}

So how to do that with password.
Thanks

iRaySpace · July 20, 2020, 10:29am

Hello,

frappe.core.doctype.user.user.sign_up don’t have password argument. If you want to put up directly from the REST data, implement similar to this and pass the password to new_password.

github.com

frappe/frappe/blob/develop/frappe/core/doctype/user/user.py#L751


      
          			"Arguments `key` and `old_password` are deprecated in function `test_password_strength`."
          		)
          
          
	enable_password_policy = frappe.get_system_settings("enable_password_policy") or 0
          
          
	if not enable_password_policy:
          		return {}
          
          
	if not user_data:
          		user_data = frappe.db.get_value(
          			"User", frappe.session.user, ["first_name", "middle_name", "last_name", "email", "birth_date"]
          		)
          
          
	if new_password:
          		result = _test_password_strength(new_password, user_inputs=user_data)
          		password_policy_validation_passed = False
          		minimum_password_score = cint(frappe.get_system_settings("minimum_password_score")) or 0
          
          
		# score should be greater than 0 and minimum_password_score
          		if result.get("score") and result.get("score") >= minimum_password_score:
          			password_policy_validation_passed = True

Regards,

Ivan

rmeyer · July 20, 2020, 12:15pm

I’m sure there’s a reason password is not accepted here. I would use frappe.core.doctype.user.user.sign_up with email and full name. Then your users will get an email where they find a link to set their password. In other cases you can use frappe.core.doctype.user.user.reset_password if the user needs to set a new password, same way, via email.

This way you never have to worry about passwords and how to handle them securely.

Ankit_Prajapati · July 20, 2020, 12:27pm

Thanks @rmeyer