Help Center

Improved

Fixed

aladia

In Review

Planned

In Progress

Completed

Rejected

More Info

Not Required

Ready To Sprint

High Priority

Low Priority

Follow the development progress of our Payment module:

Backlog

Pending Discussion

Next up

Done

Universal Roadmap

General Roadmap

Follow the development progress of our Authentication &amp; Authorizations module:

Auth N-Z Roadmap

Follow the development progress of our Profile - Organization module:

Profile Roadmap

Follow the development progress of our Social Network module:

Social Roadmap

Follow the development progress of our Membership module:

Membership Roadmap

Follow the development progress of our Chat module:

Chat Roadmap

Follow the development progress of our Calendar module:

Calendar Roadmap

Follow the development progress of our WorkSpace module:

Space Roadmap 

Follow the development progress of our Course management module:

Course Roadmap

Follow the development progress of our Artificial Intelligence module:

AI Roadmap

Follow the development progress of our Webhook module:

Webhook Roadmap

Follow the development progress of our Analytics module:

Analytics Roadmap

Follow the development progress of our Storage module:

Storage Roadmap

Follow the development progress of our Notification module:

Notification Roadmap

Payment Roadmap

Hey {name|there}! 👋

Steps to reproduce the issue:<ol><li>Send request <code>POST /auth/forgot-password</code> with an email registered in the platform</li><li>Send request <code>PUT /auth/reset-password</code> with the token retrieved in the previous step and a new password</li><li>Login with the new credentials</li></ol>Suggested solutionThe Forgot Password endpoint should return an empty response (even if the user doesn’t exist) and send the token via email.<img data-width="100%" data-align="left" data-featurebase-content-key="67d92e38ed4a743bbba6fa42/post/681dbc3a3f02d402c343c97f/0196b423-4525-7835-91f0-bf0a9aa4f179/b64u-aW1hZ2UucG5n.png" src="https://67d92e38ed4a743bbba6fa42.featurebase-attachments.com/c/post/681dbc3a3f02d402c343c97f/0196b423-4525-7835-91f0-bf0a9aa4f179/b64u-aW1hZ2UucG5n.png?X-Amz-Expires=3600&amp;X-Amz-Date=20260401T020000Z&amp;X-Amz-Algorithm=AWS4-HMAC-SHA256&amp;X-Amz-Credential=DO801TYC4FCVNNEKURKM%2F20260401%2Ffra1%2Fs3%2Faws4_request&amp;X-Amz-SignedHeaders=host&amp;X-Amz-Signature=17eafe1454f2d4b11b92d69fe3a2010ae8e4d93c838baf5f5dcbe1c448adb5c7" data-featurebase-content-filename="image.png"><img data-width="100%" data-align="left" data-featurebase-content-key="67d92e38ed4a743bbba6fa42/post/681dbc3a3f02d402c343c97f/0196b423-7b4a-7092-9e59-3dc42c572d40/b64u-aW1hZ2UucG5n.png" src="https://67d92e38ed4a743bbba6fa42.featurebase-attachments.com/c/post/681dbc3a3f02d402c343c97f/0196b423-7b4a-7092-9e59-3dc42c572d40/b64u-aW1hZ2UucG5n.png?X-Amz-Expires=3600&amp;X-Amz-Date=20260401T020000Z&amp;X-Amz-Algorithm=AWS4-HMAC-SHA256&amp;X-Amz-Credential=DO801TYC4FCVNNEKURKM%2F20260401%2Ffra1%2Fs3%2Faws4_request&amp;X-Amz-SignedHeaders=host&amp;X-Amz-Signature=189dc60d0dd00bf296bc72bb75101a7357399932650664fb720d8277b064bac0" data-featurebase-content-filename="image.png"><img data-width="100%" data-align="left" data-featurebase-content-key="67d92e38ed4a743bbba6fa42/post/681dbc3a3f02d402c343c97f/0196b423-a4f5-78ff-9474-61084cbcad2a/b64u-aW1hZ2UucG5n.png" src="https://67d92e38ed4a743bbba6fa42.featurebase-attachments.com/c/post/681dbc3a3f02d402c343c97f/0196b423-a4f5-78ff-9474-61084cbcad2a/b64u-aW1hZ2UucG5n.png?X-Amz-Expires=3600&amp;X-Amz-Date=20260401T020000Z&amp;X-Amz-Algorithm=AWS4-HMAC-SHA256&amp;X-Amz-Credential=DO801TYC4FCVNNEKURKM%2F20260401%2Ffra1%2Fs3%2Faws4_request&amp;X-Amz-SignedHeaders=host&amp;X-Amz-Signature=0dda23e6ce4a6e0d3bbcd39c6d85b7d701b5757e3fb064bf01f21b6b7f7f44ac" data-featurebase-content-filename="image.png">

Aladia

Security issue! Anyone can change user password

Subscribe to post

Subscribe to post