Choose your framework/language

v1v2
Edit on GitHub

Page updated Nov 14, 2023

Set up password change and recovery

Reset password

In order to reset your password, use the resetPassword api - this will send a code to the user attribute configured to receive such a reset code (e.g. email or SMS):

func resetPassword(username: String) async { do { let resetResult = try await Amplify.Auth.resetPassword(for: username) switch resetResult.nextStep { case .confirmResetPasswordWithCode(let deliveryDetails, let info): print("Confirm reset password with code send to - \(deliveryDetails) \(String(describing: info))") case .done: print("Reset completed") } } catch let error as AuthError { print("Reset password failed with error \(error)") } catch { print("Unexpected error: \(error)") } }
1func resetPassword(username: String) async {
2    do {
3        let resetResult = try await Amplify.Auth.resetPassword(for: username)
4        switch resetResult.nextStep {
5            case .confirmResetPasswordWithCode(let deliveryDetails, let info):
6                print("Confirm reset password with code send to - \(deliveryDetails) \(String(describing: info))")
7            case .done:
8                print("Reset completed")
9        }
10    } catch let error as AuthError {
11        print("Reset password failed with error \(error)")
12    } catch {
13        print("Unexpected error: \(error)")
14    }
15}

Usually resetting the password require you to verify that it is the actual user that tried to reset the password. The next step above will be .confirmResetPasswordWithCode.

If you are using Cognito and would like to display a more specific view or messaging to your users based the error that occurred, you can handle this by downcasting the underlyingError to AWSCognitoAuthError.

if let authError = error as? AuthError, let cognitoAuthError = authError.underlyingError as? AWSCognitoAuthError { switch cognitoAuthError { case .userNotFound: print("User not found") case .invalidParameter: print("Invalid Parameter) default: break } }
1if let authError = error as? AuthError,
2    let cognitoAuthError = authError.underlyingError as? AWSCognitoAuthError {
3    switch cognitoAuthError {
4    case .userNotFound:
5        print("User not found")
6    case .invalidParameter:
7        print("Invalid Parameter)
8    default:
9        break
10    }
11}

For examples of what errors are returned from Cognito for this API, see ForgotPassword Errors

To complete the password reset process, invoke the confirmResetPassword api with the code you were sent and the new password you want.

func confirmResetPassword( username: String, newPassword: String, confirmationCode: String ) async { do { try await Amplify.Auth.confirmResetPassword( for: username, with: newPassword, confirmationCode: confirmationCode ) print("Password reset confirmed") } catch let error as AuthError { print("Reset password failed with error \(error)") } catch { print("Unexpected error: \(error)") } }
1func confirmResetPassword(
2    username: String,
3    newPassword: String,
4    confirmationCode: String
5) async {
6    do {
7        try await Amplify.Auth.confirmResetPassword(
8            for: username,
9            with: newPassword,
10            confirmationCode: confirmationCode
11        )
12        print("Password reset confirmed")
13    } catch let error as AuthError {
14        print("Reset password failed with error \(error)")
15    } catch {
16        print("Unexpected error: \(error)")
17    }
18}

Change password

A signed in user can update their password using the updatePassword api:

func changePassword(oldPassword: String, newPassword: String) async { do { try await Amplify.Auth.update(oldPassword: oldPassword, to: newPassword) print("Change password succeeded") } catch let error as AuthError { print("Change password failed with error \(error)") } catch { print("Unexpected error: \(error)") } }
1func changePassword(oldPassword: String, newPassword: String) async {
2    do {
3        try await Amplify.Auth.update(oldPassword: oldPassword, to: newPassword)
4        print("Change password succeeded")
5    } catch let error as AuthError {
6        print("Change password failed with error \(error)")
7    } catch {
8        print("Unexpected error: \(error)")
9    }
10}
PREVIOUS
Manage user attributes
NEXT
Manage MFA settings

Amplify open source software, documentation and community are supported by Amazon Web Services.

© 2023, Amazon Web Services, Inc. and its affiliates.

All rights reserved. View the site terms and privacy policy.

Flutter and the related logo are trademarks of Google LLC. We are not endorsed by or affiliated with Google LLC.