Validate a password reset token
GET
https://app.speybooks.com/api/v1/auth/reset-password/validateCheck a reset token before showing the password form. Returns whether the token is valid and, when it is, a masked form of the account email for display. Public, so the reset page can pre-validate the link without a session.
Query parameters
tokenstringrequiredThe 64-character reset token to validate.
Response
200Returns whether the token is valid and the masked email address. Used by the frontend to decide whether to show the reset form.
Show response fields
emailstringMasked email address (e.g. jo*****@example.com). Only present when valid is true.
validbooleanWhether the token is valid, unused, and not expired.