Skip to content

Commit 3512118

Browse files
committed
Document redirect_to parameter for reset-password flow
1 parent c9a542f commit 3512118

1 file changed

Lines changed: 8 additions & 0 deletions

File tree

docs/access-control/identity-management/user-management.md

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -119,6 +119,14 @@ When the user opens the reset link, Aidbox renders an HTML page that walks them
119119

120120
Once the new password is saved, Aidbox signs the user out everywhere and the link stops working.
121121

122+
Add an optional `redirect_to` to the reset link to override where the page sends the user after a successful reset (default `/auth/login`):
123+
124+
```http
125+
GET /auth/reset-password?token=<reset-token>&redirect_to=L3Vp
126+
```
127+
128+
Base64-encoded path, preserved across the 2FA step. The decoded value must start with `/`, otherwise Aidbox falls back to `/auth/login`.
129+
122130
If you build your own UI instead of relying on the built-in page, the JSON endpoints behind that flow look like this.
123131

124132
For users without 2FA, the new password is submitted directly:

0 commit comments

Comments
 (0)