Render Password Recovery Page
GET/company/auth/recovery/:token
Endpoint to display the password change form after receiving the recovery email.
Renders an HTML template that allows the user to set a new password using the recovery token received via email.
Use Cases
- User clicks the recovery link in the email
- User accesses the URL with the recovery token directly
- Browser redirects to the password change form
Process Flow
- User receives recovery email with a link containing the token
- User clicks the link pointing to this GET endpoint
- Server validates the recovery token in the database
- If the token is valid and corresponds to a user, renders the HTML form
- If the token is invalid or has expired, displays an error
- The form allows entering a new password and confirmation
- When the form is submitted, the POST /company/auth/recovery_password endpoint is called
Security
- The token is single-use
- The token has limited validity
- No authentication required (user cannot log in yet)
- Validates that the token exists and is valid
Request
Responses
- 200
- 404
Rendered HTML page with password change form.
Token not found or invalid