I am trying to have password change UI app for searchguard internal users, I am able to get the password hash but I am not able to find any endpoint which can authenticate the internal user.
E.g. I want to have a api endpoint which will accept plain text password as input and provide is that is correct password for the given user.
I had a idea to use the hash.sh file in the tools but hash.sh gives different output for the same string everytime. So I cant use that file to hash the given password and then compare the result with get user info API.
Please let me know what endpoint or tool can be used to check valid password for given user.
When asking questions, please provide the following information:
Search Guard and Elasticsearch version
5 / 5.6.8
Installed and used enterprise modules, if any
JVM version and operating system version
Search Guard configuration files
Elasticsearch log messages on debug level
Other installed Elasticsearch or Kibana plugins, if any