VSN-2759/ remove UPDATE_PASSWORD Keycloak required action incompatible with Direct Access Grant (!285) · Requêtes de fusion · adanev / vsn / vsn-user-service

fatima senan a demandé de fusionner feature/VSN-2759 vers develop mai 06, 2026

Keycloak rejects token issuance via Direct Access Grant when UPDATE_PASSWORD is a pending required action, returning "invalid_grant: Account is not fully set up" which surfaces as Bad Credentials on the mobile app.
First-login password change is handled at the application level (mobile app prompts the user after successful authentication), making the Keycloak-level enforcement redundant.

VSN-2759/ remove UPDATE_PASSWORD Keycloak required action incompatible with Direct Access Grant