How can I manually change or reset a user's password using the REST API?
- Registration-as-a-Service (RaaS)
- REST API
This can be done by calling the
accounts.resetPassword REST API method twice:
- On the first call, pass the "
sendEmail" parameter as false and the "
loginID" parameter as the user's login identifier
- Read the "
passwordResetToken" value from the response
- On the second call, pass the "
passwordResetToken" and "
newPassword" parameters to reset the user's password
Note: This effectively bypasses the user-verification step that requires the user to receive a password reset email and click on the link within before being able to reset their password. Therefore, this method should only be used by an administrator after being satisfied that the user requesting for such a reset is the owner of the account. Otherwise, Gigya recommends following the steps in the guide "How to send a password reset email for a user account in the Gigya Admin Console" instead.