Password Change

Since the change password process involves filling in the password, the flow is provided by the API as an HTML view and not by the client. To change the password, the client application must point the user agent to the change password HTML view, by issuing the following POST request:

curl --location --request POST '' \
--header 'Content-Type: application/json' \
--data-raw '{
    "token": "<accessToken>",
    "clientId": "<cliendId>",
    "redirectUrl": "<redirectURL>",
    "language": "en-GB"

The API then replies with HTML content that should be displayed to the user: image

The user has also the option to abort the password change procedure by pressing the <- button. image In this case the redirectUrl is called with additional request parameters: <RedirectURL>?error=invalid_request&error_description=password_change_aborted. This way the client can react to this flow.

After a successful password change the user is taken to this HTML view that confirms the password change: image

Clicking the DONE button will call the previously defined redirectUrl.

Area: Account API