I haven't been able to get the Forgot Password flow working yet.
Reset token generation works. I wired up an email service that links to the reset URL: auth/reset-password?reset_password_token=TokenGoesHere.
The link takes the user to the Change password page. They enter a new password and click CHANGE PASSWORD.
Expectation: This posts the password to the restore-pass API endpoint in the demo .NET API. Actually, it posts it to reset-pass, which expects the user to be logged in.
I changed the config to point to /auth/restore-pass:
If reset-password's URL points to reset-password in the API, the API returns an auth error (HTTP 401) because the user isn't authenticated, since this is an anonymous "forgot password" request.
If the URL points to restore-password, password reset fails because the Email property of RestorePasswordDTO isn't populated.
I haven't been able to get the Forgot Password flow working yet.
Reset token generation works. I wired up an email service that links to the reset URL:
auth/reset-password?reset_password_token=TokenGoesHere
.The link takes the user to the Change password page. They enter a new password and click CHANGE PASSWORD.
Expectation: This posts the password to the
restore-pass
API endpoint in the demo .NET API. Actually, it posts it toreset-pass
, which expects the user to be logged in.I changed the config to point to
/auth/restore-pass
:Now the endpoint is hit. However, Nebular doesn't populate the
RestorePasswordDTO
'sEmail
property, so password reset fails.Steps To Reproduce
request-pass
request.data
property.Expected Behavior
The user's password is successfully reset.
Actual Behavior
reset-password
's URL points toreset-password
in the API, the API returns an auth error (HTTP 401) because the user isn't authenticated, since this is an anonymous "forgot password" request.restore-password
, password reset fails because theEmail
property ofRestorePasswordDTO
isn't populated.