Authentication
Forgot Password
Request a password reset link
POST
This is a public endpoint that does not require authentication.
Request Body
The email address associated with the account. Must be a valid email format.
Response
A successful request returns HTTP 200 OK status. For security reasons, the same response is returned whether or not the email exists in the system. If the email exists:- A password reset token will be generated (valid for 1 hour)
- A password reset email will be sent to the provided email address
For security purposes, this endpoint always returns a 200 OK response, regardless of whether the email exists in the system. This prevents email enumeration attacks.
Error Responses
Error details when the request fails
Common error cases:
- 400 Bad Request: Invalid email format
