Request a password reset email
POST
/auth/password/forgot
Initiates a password reset flow by sending a reset email to the user. Always returns success to prevent user enumeration (timing-safe response).
Request Body
Section titled “Request Body ”object
email
required
string format: email
Responses
Section titled “ Responses ”Password reset email sent (if user exists)
object
message
required
string
Invalid request (e.g., malformed email)
Too many requests - rate limited
object
error
required
string
code
required
string
retryAfter
required
Seconds until the rate limit resets
integer