Password reset link uses HTTP

nikita.p · November 23, 2023, 11:04am

The password reset link uses http, is there any way to change it to https?

Some of our customers got the error “The connection to url9662.mydomain.com is not secure”

dan.woda · November 28, 2023, 8:16pm

Welcome to the Auth0 Community!

I just tested a standard PW reset email flow and I don’t see any HTTP requests.

Do you have a custom domain set up that could be causing this?

nikita.p · November 29, 2023, 8:30am

Hi, thanks for the reply. No, we are not using a custom domain yet.

The password reset page itself uses HTTPS for us, but the link uses HTTP, you can try to copy the link that comes to your email.

At first HTTP link comes but then redirects to HTTPS

dan.woda · November 29, 2023, 2:43pm

Hm, the link sent to me is HTTPS.

Are you planning on using a custom domain? That may also address this.

Topic		Replies	Views
Password Reset Link uses HTTP (again) Get Help security-question-concern , security-compliance	3	87	March 24, 2025
Password reset email url not working Get Help user-management , user-password-management	2	833	August 3, 2023
Reset password link in reset password email leads to 404 Get Help	1	2199	January 11, 2022
Magical(Verification) links changes as soon as user clicks on it in password reset email Get Help auth0	2	1355	September 30, 2022
URL for custom reset password page Get Help password-reset , custom , reset-password	4	16334	November 23, 2019