Password reset backend calls

Owned by Frank Timmerbeil
Last updated: May 10, 2019
1 min read

How to call the backend to perform a password reset:

(Copied from Jira issue).

ACP-527


The endpoint is:


/users/password-reset

See swagger api docs in azeti portal: Help | Rest api documentation:


Example use:

POST:

http://localhost:8080/SSCAdmin/users/password-reset

request-body:

 {"email":"frank.timmerbeil@azeti.net","url":"#!/new-password/"}

May return USER_DOES_NOT_EXIST (see example error object below)

This sends the mail with the activation link.

Check the inbox, it contains text and the above url, that has an activation code appended to it:

https://development.azeti.net/#!/new-password/c41a119b-de20-43f7-966a-85b6891fa58f

Take the code part and  use GET. This is for validating the activation code, before displaying the password prompt.

GET:

http://localhost:8080/SSCAdmin/users/password-reset?code=c41a119b-de20-43f7-966a-85b6891fa58f

May return error object containing:


INVALID_ACTIVATION_CODE
ACTIVATION_CODE_DOES_NOT_EXIST
ACTIVATION_CODE_EXPIRED

Example error:

{
    "group": "AZETI_CLOUD",
    "error": "ACTIVATION_CODE_DOES_NOT_EXIST",
    "infos": [
        "c41a119b-de20-43f7-096a-85b6891fa58f"
    ]
}

Finally reset the password:

PUT:

1 http://localhost:8080/SSCAdmin/users/password-reset

request-body:

1 {"code":"c41a119b-de20-43f7-966a-85b6891fa58f","password":"1234567A"}

May return:
INVALID_ACTIVATION_CODE
ACTIVATION_CODE_DOES_NOT_EXIST
ACTIVATION_CODE_EXPIRED
INVALID_PASSWORD