Autional Autional
API Reference GitHub autional.com →

PUT /auth/me/password

Set new password after verifying old password; upon successful change, automatically revoke all sessions to ensure account security. Reference: NIST SP 800-63B §5.1.1.2, OWASP ASVS V2.1.

Authentication `bearerAuth` application/json

Request Body

Schema: dto.HTTPChangePasswordRequest

FieldTypeRequiredExampleConstraintsDescription
new_password string Yes length: 8–? New password
old_password string No Old password (optional for admin reset)
password_transmission string No plain|hash|symmetric|asymmetric

Responses

StatusDescriptionSchema
200Password changed successfully, all sessions revokeddto.ChangePasswordResponse
400Invalid request parameters or old password verification failedgitee_com_linmes_authms_base_dto.SimpleResponse
401Unauthenticated or invalid tokengitee_com_linmes_authms_base_dto.SimpleResponse
500Internal server errorgitee_com_linmes_authms_base_dto.SimpleResponse

Referenced Schemas

dto.ChangePasswordResponse

FieldTypeRequiredExampleConstraintsDescription
code integer No
message string No

gitee_com_linmes_authms_base_dto.SimpleResponse

FieldTypeRequiredExampleConstraintsDescription
code integer No
message string No
timestamp string No