Create a backend endpoint that allows users to reset their password using a secure token received via email. The endpoint should validate the token, accept the new password, and update the user’s credentials in the database.
Acceptance Criteria
Develop an endpoint that validates the reset token and accepts a new password.
Ensure the new password meets security standards (e.g., complexity, length).
Update the user’s password in the database securely.
Invalidate the token after a successful password reset.
Implement error handling for invalid or expired tokens.
Purpose
To provide users with a secure way to reset their passwords using a verification token.
Requirements
Ensure secure password storage with proper hashing algorithms.
Include comprehensive error handling for token validation and other edge cases.
Perform thorough testing to ensure reliability and security.
Expected Outcome
Users can successfully reset their password using a secure token, and the system updates their credentials securely.
hestherrh
commented
2 months ago
Description
Create a backend endpoint that allows users to reset their password using a secure token received via email. The endpoint should validate the token, accept the new password, and update the user’s credentials in the database.
Acceptance Criteria
Purpose
To provide users with a secure way to reset their passwords using a verification token.
Requirements
Expected Outcome Users can successfully reset their password using a secure token, and the system updates their credentials securely.