So at the moment on our NextJS project the thing we are doing is that on the Universal Login page → The login template we have an link for “Forget Password”, which shows one input where the user can enter the email on which he want to reset his password.
The code to send the email for password reset is simple:
But doesn’t matter if the email exist in the database, the email will be just sent.
So after a bit of research in the forum I have found some topics about that.
So the reason for that is to not expose which emails are registered in the database for security reasons.
So as I explained on the first sentence what we are doing in our project, is there a way to actually show an error message under the input if SOME user tries to reset password for an email which doesn’t exist ?
Or such thing is not possible with our requirements ?