Passing "reset_url" to reset password endpoint does not work #4611
Replies: 3 comments 7 replies
-
|
You have to specify the allowed URLs in This was added to ensure strangers couldn't request a password for another account with a fake reset url 👍🏻 |
Beta Was this translation helpful? Give feedback.
-
|
You can use a CSV of values in there (and/or prefix it with |
Beta Was this translation helpful? Give feedback.
-
Can be either |
Beta Was this translation helpful? Give feedback.
-
|
I have put these settings to .env file, reload reload Docker containers, but Directus is not picking up variable from environment: .env file: |
Beta Was this translation helpful? Give feedback.
-
|
Could this be "just" a docker/env thing? I tried this locally (given; outside of docker) and it seems to work as expected |
Beta Was this translation helpful? Give feedback.
-
|
All good now. Had to rebuild after changing ${PUBLIC_WEB_URL} is the url of my front-end application. |
Beta Was this translation helpful? Give feedback.
-
|
Hi! is there any way this can be achieved in a Directus Cloud instance since we can't set envs there? Thanks! |
Beta Was this translation helpful? Give feedback.
-
|
Did you figure this out? |
Beta Was this translation helpful? Give feedback.
-
was it not possible to have an example in the Docs? it feels like documenting the "forgot password" is poor. |
Beta Was this translation helpful? Give feedback.
-
Trying to access path /auth/password/request gives the following error:
Error:
{"errors":[{"message":"Url "https://example.com/reset-password" can't be used to reset passwords.","extensions":{"code":"INVALID_PAYLOAD"}}]}
Request headers:
headers:
email: "user@email.com"
reset_url: "https://example.com/reset-password"
I am sure this was working previously. Did this functionality get removed? If so, why?
Project details
Directus Version: 9.0.0-rc.51
Environment: production
OS: Linux 4.15.0-29-generic
Node: 14.16.0
Beta Was this translation helpful? Give feedback.
All reactions