Short-lived token
Reset links expire quickly and can only be used once.
Secure account recovery
Recover access without weakening the account security model.
Password recovery uses a short-lived email link so accounts can be restored without exposing whether an email exists.
Privacy-safe response
The flow avoids account enumeration by returning a neutral success message.
Clean handoff
After changing the password, the user returns to login with the new credentials.
Recover your password
Enter your account email and we will send a secure reset link.