Invoked as the last step in the password reset process to let the user change his or her password.
Accepts the initial token received by the user in email, the reset key received in the previous step and a new password that should be set for the user.
| Name | Datatype | Optional | Notes |
|---|---|---|---|
| token | string | --- | Password reset token as it was received by the user in email |
| reset_key | string | --- | Reset key received by the application in the previous step, when the token was initially accessed |
| current_app | string | --- | Name of application that the call is attempted from |
| Name | Datatype | Optional | Notes |
|---|---|---|---|
| cid | string | --- | Correlation ID assigned to request |
| status | string | --- | Overall status code |
| sub_status | list | Yes | Returned only if status is not "ok", a list of error or warning codes |
| reset_key | string | Yes | A reset key to be used in the next step to change the password. Returned only if status is OK. |
Token is valid:
$ curl -XDELETE localhost:17010/zato/sso/password/reset -d '
{
"password": "Ytj8~zQ--3O9hbNU",
"token": "2b2tycmz98bcszpasanjg45h6",
"reset_key": "gAAAAABgrLzSMBtSa-FY88-1nUSJFZcBXdXwWci...",
"current_app": "CRM"
}
'
{
"cid": "2eb48bf0139c03274c53495d",
"status": "ok",
"reset_key": "gAAAAABgrLzSMBtSa-FY88-1nUSJFZcBX...",
"sub_status": []
}
$
Token or reset key are invalid (e.g. already used or expired):
$ curl -XDELETE localhost:17010/zato/sso/password/reset -d '
{
"password": "Ytj8~zQ--3O9hbNU",
"token": "2b2tycmz98bcszpasanjg45h6",
"reset_key": "gAAAAABgrLzSMBtSa-FY88-1nUSJFZcBXdXwWci...",
"current_app": "CRM"
}
'
{
"cid": "6b39a592f6ddb6080b929f4c",
"status": "error",
"sub_status": ["E010001"]
}
$
Password does not match the site's complexity rules (too simple):