I understand that this method can only be used with the token acquired by the user:
POST https://graph.microsoft.com/v1.0/me/changePassword
Content-type: application/json
{
"currentPassword": "xWwvJ]6NMw+bWH-d",
"newPassword": "0eM85N54wFxWwvJ]"
}
Is there a similar method (supplying current and new password) that can be used with the admin token, or can a custom policy be set up in some manner that would allow something similar to be invoked in graph Api with the admin token?
We have a solution whereby user accounts are maintained via a queue. So, instructions to change claims, roles passwords etc. all end up on a queue where they are picked up and dealt with by a queue-triggered Azure function. So, it just so happens that when a user does "Change Password" as it were, the instruction will end up as a message on a queue, and the function (using an admin account) will do the changing of the password. Hence, we need this function to be available to the admin account.