Require a password be reset by the associated email address. This endpoint is only functional for cross-org password use cases.
RBAC Enforced API
When a Member Session is passed in the Authorization headers, Stytch will enforce that the Member has permission to take the update.info.delete.password Action on the stytch.member or stytch.self (depending on the target MemberID) Resource prior to honoring the request.
To learn more, see our RBAC guide.
const stytch = require('stytch');
const client = new stytch.B2BClient({
project_id: 'PROJECT_ID',
secret: 'SECRET',
});
const params = {
email_address: "sandbox@stytch.com",
};
const options = {
authorization: {
session_token: 'mZAYn5aLEqKUlZ_Ad9U_fWr38GaAQ1oFAhT8ds245v7Q',
},
};
client.passwords.email.requireReset(params, options)
.then(resp => { console.log(resp) })
.catch(err => { console.log(err) });{
"status_code": 200,
"member_id": "member-test-32fc5024-9c09-4da3-bd2e-c9ce4da9375f",
"member": {...},
"organization": {...}
}