Confirm Password Reset Token

POST /api/v1/auth/confirm-reset-token

Validate the password reset token received via email. This is the second step in the password reset flow, verifying the token before allowing password change.

application/json

Body Required

Email and reset token for validation

email string Required
token string Required

Responses

200 application/json

Reset token confirmed successfully
Hide response attributes Show response attributes object
- message string Required
  
  Response message
- success boolean Required
400 application/json

Invalid token format or missing required fields
401 application/json

Invalid or expired reset token
404 application/json

User with provided email not found

POST /api/v1/auth/confirm-reset-token

curl \
 --request POST 'http://localhost:3500/api/v1/auth/confirm-reset-token' \
 --header "Content-Type: application/json" \
 --data '{"email":"user@university.edu","token":"abc123def456ghi789"}'

Request example

Confirm reset token received in email

{
  "email": "user@university.edu",
  "token": "abc123def456ghi789"
}

Response examples (200)

{
  "message": "Reset token confirmed successfully",
  "success": true
}

Response examples (400)

{
  "error": "Bad Request",
  "message": [
    "token should not be empty",
    "email must be an email"
  ],
  "statusCode": 400
}

Response examples (401)

{
  "error": "Unauthorized",
  "message": "Invalid or expired reset token",
  "statusCode": 401
}

Response examples (404)

{
  "error": "Not Found",
  "message": "User not found",
  "statusCode": 404
}