January 7, 2022

Password Reset Link Expiration

Earlier, Contentstack did not impose an expiration timeframe on password reset links you generate when you forget the password. This vulnerability could expose users to information security attacks.

Post January 07, 2022, Contentstack will invalidate all password reset links within 60 minutes from when you generate them. This update maintains a robust security mechanism and prevents accounts from being hacked. Once the link expires, you can create another link using Forgot password and reset your password.

Was this article helpful?

Thanks for your feedbackSmile-icon