auth.password_reset
event, passing it the token as a payload. You can listen to that event in a subscriber as explained in this guide, then send the customer a notification. The notification is sent using a Notification Module Provider, and it should have a URL that accepts a token
query parameter, allowing the customer to reset their password from the storefront.curl --location -g --request POST '{{BASE_URL}}/auth/customer//reset-password' \
--header 'Content-Type: application/json' \
--data-raw '"customer@gmail.com"'
{
"message": "Discount must be set to dynamic",
"type": "not_allowed"
}