/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
How can password reset requests in the Forgot Password flow be restricted to only existing emails, considering that the accounts.resetPassword method always returns a success response (errorCode 0), regardless of whether the email exists? Why is it not possible to enforce this validation before initiating the reset process?
Read more...
Environment
- SAP Customer Data Cloud
- Account Password Reset
Product
SAP Customer Data Cloud all versions
Keywords
valid email, restrict password reset, login ID enumeration, Extensions feature, custom validation, email existence, reset request process, pre-validation , KBA , CEC-PRO-RAS , RaaS (Screen-Sets, Site Policies, Schema) , How To
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)