Passing "reset_url" to reset password endpoint does not work #4611
Replies: 3 comments 7 replies
-
You have to specify the allowed URLs in This was added to ensure strangers couldn't request a password for another account with a fake reset url 👍🏻 |
Beta Was this translation helpful? Give feedback.
-
Hi! is there any way this can be achieved in a Directus Cloud instance since we can't set envs there? Thanks! |
Beta Was this translation helpful? Give feedback.
-
was it not possible to have an example in the Docs? it feels like documenting the "forgot password" is poor. |
Beta Was this translation helpful? Give feedback.
-
Trying to access path /auth/password/request gives the following error:
Error:
{"errors":[{"message":"Url "https://example.com/reset-password" can't be used to reset passwords.","extensions":{"code":"INVALID_PAYLOAD"}}]}
Request headers:
headers:
email: "user@email.com"
reset_url: "https://example.com/reset-password"
I am sure this was working previously. Did this functionality get removed? If so, why?
Project details
Directus Version: 9.0.0-rc.51
Environment: production
OS: Linux 4.15.0-29-generic
Node: 14.16.0
Beta Was this translation helpful? Give feedback.
All reactions