Password Reset
Apiato provides a password reset feature out of the box using the Laravel's built-in password reset functionality.
Configuration
Make sure that you configured your apps' mail services correctly and the rest is already configured for you.
Routing
Requesting The Password Reset Link
Send a POST request to the forgot-password endpoint with the user's email address to request a password reset link.
This will email the user with a link to reset their password.
Resetting The Password
There are two main elements to handle the password reset process:
- Frontend URL
- Define a route in your frontend app to handle the password reset link.
- API Configuration
- Configure your frontend app's password reset URL by either creating a new App
or using the existing
App\Ship\Apps\Webapp.
- Configure your frontend app's password reset URL by either creating a new App
or using the existing
Next, read the Process Flow section to understand how this ties into the overall password reset process.
Process Flow
Let's assume you have a frontend app with a URL like https://myapp.com/password/reset.
The password reset process flow is as follows:
- The user requests a password reset link.
- The API sends a reset password link to the user's email address.
- The user clicks the link in the email.
- The link redirects the user to the specified (Frontend) URL in the email.
- The URL contains a
reset_urlquery string parameter. - The frontend app makes a
POSTrequest to thereset_urlto reset the user's password. - The API resets the user's password and returns a
200 OKresponse.
Password Reset URL
You may instruct the API to use a different URL for password reset by using the Apiato Apps feature.