Password validation when using SPI

Hey, im using the user storage SPI to connect to external database. I have been mapping the data from the external data to UserModel successfully.

However , i would like to delegate the password validation coming from the external database to keycloak itself, if that is possible ?

Currently i do implement the CredentialInputValidator and validate it in isValid , but i fell its much better if i could send it to keycloak.

I kind of want the external users to work similar to any keycloak user and let keycloak do the validation and stuff.

Currently, as i said before the UserModel does not have a password field so im kinda confused with the approach here.

Appreciate any leads from you guys :slight_smile: