Users & Authentication
Complete Password Reset
Set a new password for a customer account using the token received in the password-reset email.
POST
Complete Password Reset
Complete Password Reset
Validates the one-time reset token sent to the customer’s email and sets the new password. On success, Nexudus returns a JWT that the portal immediately exchanges for a bearer token, signing the customer in automatically without an extra login step.Authentication
No authentication required. Thetoken in the request body acts as the credential.
Request Body
The one-time reset token extracted from the password-reset link sent to the customer’s email. This token is single-use and expires after a short
period.
The new password the customer wants to set. Must satisfy the location’s password policy.
The numeric ID of the business/location. Obtained from the current location context.
Response
Returns anActionConfirmation envelope. On success, Value contains a JWT that can be exchanged for a bearer token via POST /api/sys/users/exchange.
true when the password was changed successfully.One-time JWT to exchange for a bearer token via
POST /api/sys/users/exchange. Pass this directly to endpoints.system.auth.login(Value).HTTP-style status code mirrored in the body.
200 on success.Human-readable message or error description.
Validation errors object.
null on success.Example Response
TypeScript Integration
Usage in Portal
Error Responses
The token is invalid, expired, or already used. The customer must restart the password-reset flow via
POST /api/sys/users/startPasswordReset.The new password does not meet the location’s password requirements. Check
Errors in the response body.Related Endpoints
Complete Password Reset