Reset Password (v1)
Method & Path
POST /api/v1/password-reset/reset
Description
Reset the workspace owner's password using a verified OTP code.
Authentication
None: This is a public endpoint (no authentication required).
Headers
Content-Type: application/json
Request Body
{
"email": "owner@example.com",
"otpCode": "123456",
"newPassword": "NewSecurePassword123"
}
Request Body Schema
| Field | Type | Required | Description |
|---|---|---|---|
email | string | Yes | Workspace owner email address |
otpCode | string | Yes | 6-digit OTP code (must be verified first) |
newPassword | string | Yes | New password (min: 8 characters, must contain at least one number) |
Response 200 OK
{
"message": "Password has been reset successfully. You can now login with your new password."
}
Response Fields
message(string): Success message
Common Errors
400 Bad Request: Invalid password format (must be at least 8 characters and contain at least one number)
401 Unauthorized: Invalid or expired OTP code, or OTP not verified
404 Not Found: Workspace not found
422 Unprocessable Entity: Validation error
500 Internal Server Error: Server error occurred while processing the request
Notes
- OTP code must be verified using Verify OTP endpoint before resetting password
- Password must meet requirements:
- Minimum 8 characters
- At least one number
- After password reset, an email notification is sent to the workspace owner
- User can immediately login with the new password
- OTP code is invalidated after successful password reset