Docs

Password Reset Page

This article will help you learn how to configure the custom Password Reset page. If you are an admin trying to reset a user's password, see Change Users' Passwords. If you are a user trying to reset your own password, see Reset Your Auth0 Account Password.

The Password Reset Page is a page that is hosted by Auth0, and uses Auth0's password reset widget to allow users to change their passwords in the event that they're unable to log in. Using this page, you can maintain consistency in the appearance of your pages (login, password reset, and so on), and the users of your application(s) can easily change their passwords as needed.

Enable the Password Reset Page

Using the Auth0 Dashboard, you can customize your Password Reset Page by flipping the toggle switch to enable customizations and providing a custom script.

Hosted Password Reset Page

Edit the Password Reset Page

Once you've flipped the customization toggle for the Password Reset Page, you'll be able to use the text editor built into the Auth0 Dashboard to change your HTML, style your page using CSS, and alter the JavaScript used to retrieve custom variables. After you've made your changes, make sure to click Save.

Please note that the password reset page works as it is without customization. Auth0 hosts the page for your tenant, and also updates the included password reset widget as necessary. However, once you toggle the customization to on, you are responsible for the updating and maintaining the script (including changing version numbers, such as that for the Reset Password widget), since Auth0 can no longer update it automatically without potentially interfering with your customizations.

Custom variables

You can use JavaScript to retrieve the following custom variables:

Variable Description
email The email address of the user requesting the password change
ticket The ticket representing the given password reset request
csrf_token Token used to prevent CSRF activity
tenant.name The name associated with your Auth0 tenant
tenant.friendly_name The name displayed for your Auth0 tenant
tenant.picture_url The URL leading to the logo representing you in Auth0
tenant.support_email The support email address for your company displayed to your Auth0 users
tenant.support_url The support URL for your company displayed to your Auth0 users
lang The user's language
password_policy The active connection's security policy. You can see what this is using https://manage.auth0.com/#/connections/database/con_YOUR-CONNECTION-ID/security. Be sure to provide your connection ID in the URL.)
password_complexity_options Object containing settings for the password complexity requirements
min_length The minimum length required for newly-created passwords. Can range from 1 to 128 characters in length

You can set/check the values for your tenant variables in the Settings area in Tenant Settings

It is currently not possible to conditionalize customizations based on Application ID (client_id).

Within the Password Reset Page Editor, you'll see the following JavaScript embedded:

Notice that the sample template uses the tenant.picture_url variable to return the value entered in the Logo URL field of the Settings area in Tenant Settings. Auth0 will retrieve the logo at that URL and display it on the password reset widget. If Auth0 cannot resolve the URL, it'll display a default image (note that the sample snippet below has all unrelated content removed, including mandatory fields):

Revert Your Changes

If you'd like to revert to an earlier design, you have two options:

  • Reverting to the last saved template by clicking Reset to Last;
  • Reverting to the default template provided by Auth0 by clicking Reset to Default.