# Complete a 2FA based password reset

Completes the password reset.
IMPORTANT: To reset a user's password, first send a POST request to trigger an email with a reset token. This token must be included in the state parameter when calling this API. The validator parameter is optional, if omitted, the OTP can be verified first, and the new password can be submitted separately with the correct OTP.

Endpoint: POST /zephr/users/reset/{state}
Version: 2025-07-30
Security: CookieBlaizeSession, JwtQuery, JwtHeaderXBlaizeJwt, JwtHeaderXZephrJwt, JwtBearer, JwtCookie

## Path parameters:

  - `state` (string, required)
    A 6-digit code, which is used to verify the password request.

## Request fields (application/json):

  - `identifiers` (object, required)
    Example: {"email_address":"joe.blow@company.com"}

  - `identifiers.email_address` (string)
    Example: "joe.blow@company.com"

  - `validators` (object)
    Example: {"password":"mynewsecurepassword123"}

  - `validators.password` (string)
    Example: "mynewsecurepassword123"


## Response 200 fields

## Response 400 fields

## Response 404 fields

## Response 409 fields