If you try to reset the password of a super admin (using express-stormpath rc4), you can go through the entire flow until you get to http://localhost:3000/change?spToken=adflkdjfkdkjf. On this page, you enter in a new password, confirm it, and click Submit. You'll get an error that says Request is missing a required parameter.
I'm not sure whether it should be possible for super admins in Okta to reset their passwords using the express-stormpath library. If they should, this is a bug. If they shouldn't, the error message (or at least the developer message) should be changed.
If you try to reset the password of a super admin (using express-stormpath rc4), you can go through the entire flow until you get to
http://localhost:3000/change?spToken=adflkdjfkdkjf. On this page, you enter in a new password, confirm it, and clickSubmit. You'll get an error that saysRequest is missing a required parameter.I'm not sure whether it should be possible for super admins in Okta to reset their passwords using the express-stormpath library. If they should, this is a bug. If they shouldn't, the error message (or at least the developer message) should be changed.