Multi-tenancy authentication API reference - passwords require reset by email

Delete Member password

POSThttps://test.stytch.com/v1/b2b/passwords/email/require_reset

Require a password be reset by the associated email address. This endpoint is only functional for cross-org password use cases.

RBAC Enforced API

When a Member Session is passed in the Authorization headers, Stytch will enforce that the Member has permission to take the update.info.delete.password Action on the stytch.member or stytch.self (depending on the target MemberID) Resource prior to honoring the request.

To learn more, see our RBAC guide.

Body parameters

email_address* string

member_id string

organization_id string

Header parameters

X-Stytch-Member-Session string

X-Stytch-Member-SessionJWT string

Response fields

status_code int

member_id string

member object

organization object

curl --request POST \
  --url https://test.stytch.com/v1/b2b/passwords/email/require_reset \
  -u 'PROJECT_ID:SECRET' \
  -H 'Content-Type: application/json' \
  -H "X-Stytch-Member-Session: mZAYn5aLEqKUlZ_Ad9U_fWr38GaAQ1oFAhT8ds245v7Q" \
  -d '{
    "email_address": "sandbox@stytch.com"
  }'

RESPONSE

{
  "status_code": 200,
  "member_id": "member-test-32fc5024-9c09-4da3-bd2e-c9ce4da9375f",
  "member": {...},
  "organization": {...}
}