Resetting password

Users must follow the required steps to reset their forgotten password securely.

Use the following steps to reset the forgotten password.
  1. Generate one time token to set a new password. For more information about generating token for resetting the forgotten password, see Generating tokens for resetting the forgotten password.
  2. Use the Send Email API with the following attributes to send an email for the generated token by using the email template.
    URL for access:
    https://<host>:<port>/mrmws/sponsors/<sponsorContext>/sendemail/
    • Body - token=tokengenerated
    • Header - Content-Type: application/x-www-form-urlencoded
    • Method - POST
    Note: The URL can be different based on your deployment option. For more details about the URL, see URL for accessing IBM PEM and APIs.
    The following keys are available for mapping:
    • emailTemplateKey - The unique key of the system default email template.
    • templateArguments - Array of arguments that are provided in the email template to replace parameter values in the template.
    • toAddresses - Array of unique and valid email addresses of the recipients.
    • Locale - Language to be used for sending the email if the email template has a translation for that language. Value for the locale is the folder name within the default template. For example, en, de, or ja.
  3. Use the Security Question API to retrieve the security question for the user that is provided by the user during registration.
    URL for access:
    https://<host>:<port>/mrmws/sponsors/<sponsorContext>/user/password/securityquestion/
    • Body - token=tokengenerated
    • Header - Content-Type: application/x-www-form-urlencoded
    • Method - GET
    Note: The URL can be different based on your deployment option. For more details about the URL, see URL for accessing IBM PEM and APIs.
  4. Validate the security answer that is entered by the user.
    URL for access:
    https://<host>:<port>/mrmws/sponsors/<sponsorContext>/user/password/validateSecurityAnswerWithToken/
    • Body - token=<token> with one URL Form Encoded Input&secAnsw=<security_answer>
    • Header - Content-Type: application/x-www-form-urlencoded
    • Method - POST
    Note: The URL can be different based on your deployment option. For more details about the URL, see URL for accessing IBM PEM and APIs.
  5. With the generated token, new password that is provided by the user is set after successful validation.
    URL for access:
    https://<host>:<port>/mrmws/sponsors/<sponsorContext>/user/password/resetPasswordWithToken/
    • Body - token=tokenValue&secAnsw=answer&newPwd=new password
    • Header - Content-Type: application/x-www-form-urlencoded
    • Method - POST
    Note: The URL can be different based on your deployment option. For more details about the URL, see URL for accessing IBM PEM and APIs.

Processing

Basic authentication is not required as the authentication is done by using the generated token.

When the API call is completed, the API returns a status message.