Autional Autional
API Reference GitHub autional.com →

POST /auth/recovery/complete

After verifying the recovery code and recovery token, set a new password, automatically revoke all sessions to ensure account security, and send a password change notification. References: NIST SP 800-63B §5.1.1.2, OWASP ASVS V2.1.

Authentication None application/json

Request Body

Schema: dto.CompleteAccountRecoveryRequest

FieldTypeRequiredExampleConstraintsDescription
code string Yes Verification code
new_password string Yes length: 8–? New password
recovery_token string Yes Recovery token

Responses

StatusDescriptionSchema
200Account recovery complete, password resetdto.CompleteAccountRecoveryResponse
400Invalid request parameters or expired recovery tokengitee_com_linmes_authms_base_dto.SimpleResponse
500Internal server errorgitee_com_linmes_authms_base_dto.SimpleResponse

Referenced Schemas

dto.CompleteAccountRecoveryResponse

FieldTypeRequiredExampleConstraintsDescription
message string No

gitee_com_linmes_authms_base_dto.SimpleResponse

FieldTypeRequiredExampleConstraintsDescription
code integer No
message string No
timestamp string No