> ## Documentation Index > Fetch the complete documentation index at: https://learn.nexudus.com/llms.txt > Use this file to discover all available pages before exploring further. # Password Reset > The token-based password reset form where members set a new password. # Password Reset The password reset page is step two of the recovery flow. Members arrive here by clicking the reset link in their email. The link contains a secure token that authenticates the request. Password Reset page ## Flow 1. Member clicks the reset link from their email — the URL contains a JWT token. 2. The page decodes the token and extracts the member's **email address**, displaying it in a read-only field. 3. Member enters a **new password** that meets strength requirements. 4. Clicks **Reset password**. 5. A success message confirms the password was changed. 6. Member navigates **Back to sign in** to log in with their new password. ## Token validation The page performs several checks on the JWT token: | Check | Behaviour if failed | | ------------------------- | ------------------- | | Token missing | Redirects to login | | Token malformed / invalid | Redirects to login | | Token expired | Redirects to login | If any check fails, the member is silently redirected to the sign-in page where they can start the recovery process again. ## Password requirements The new password must meet the strength rules defined by your location's validation schema. Members see real-time feedback as they type. A show/hide toggle is available for the password field. ## Page layout | Side | Content | | --------- | ------------------------------------------------------------ | | **Left** | "Real Time Sync" illustration (hidden on mobile) | | **Right** | Email display (read-only), password field, and submit button | The business logo and primary colour theme are applied from your location settings.