Allow the user to change his password.

POST /auth/change-password

Prior to modifying the password, it requires to give the current password (to make sure the user changing the password is not someone who stealed the session). The new password requires a confirmation to ensure that the user didn't make a mistake by typing his new password.


  • 200

    Password changed

  • 400

    Invalid password or inactive user

POST /auth/change-password
curl \
 -X POST http://localhost:8080/api/auth/change-password \
 -H "Authorization: $API_KEY"