Complete Password Recovery

PUT

/account/recovery

account

Use this endpoint to complete the user account password reset. Both the userId and secret arguments will be passed as query parameters to the redirect URL you have provided when sending your request to the POST /account/recovery endpoint.

Please note that in order to avoid a Redirect Attack the only valid redirect URLs are the ones from domains you have set when adding your platforms in the console interface.

Request Example

Shell

JavaScript

Java

Swift

curl --location --request PUT 'https://appwrite.io/v1/account/recovery' \
--header 'Content-Type: application/json' \
--data-raw '{
    "password": "string",
    "passwordAgain": "string",
    "secret": "string",
    "userId": "string"
}'

Response Example

{
    "$id": "string",
    "expire": 0,
    "secret": "string",
    "userId": "string"
}

Request

Body Params application/json

password

string

required

New password. Must be between 6 to 32 chars.

passwordAgain

string

required

New password again. Must be between 6 to 32 chars.

secret

string

required

Valid reset token.

userId

string

required

User account UID address.

Examples

Responses

🟢200Token

application/json

Body

Token

$id

string

required

Token ID.

expire

integer <int32>

required

Token expiration date in Unix timestamp.

secret

string

required

Token secret key. This will return an empty string unless the response is returned using an API key or as part of a webhook payload.

userId

string

required

User ID.

Modified at 2023-08-16 07:28:13

Create Password Recovery

Delete All Account Sessions