Password Reset Via Mail

🔐 How to Implement Reset Password Functionality in a Django Application

Password reset is an essential feature for any application that has user authentication. Fortunately, Django provides a powerful and secure built-in system to handle this entire workflow — from requesting a password reset to setting a new one via an email link.

In this article, you'll learn how to implement the forgot/reset password flow in a Django application using Django’s auth system.

📦 Prerequisites

• Has the authentication system enabled (django.contrib.auth)
• Uses Django’s built-in User model or a custom user model
• Optional Knowledge on sending email from django server (we’ll start with console backend for dev)

🔁 The Reset Password Flow in Django

Django offers four views to handle the reset password process:

🛠️ Step 1: Add Password Reset URLs

from django.contrib.auth import views as auth_views
from django.urls import path

urlpatterns = [
    path('forgot-password/', auth_views.PasswordResetView.as_view(
        template_name='password_reset.html'
    ), name='password_reset'),

    path('forgot-password/done/', auth_views.PasswordResetDoneView.as_view(
        template_name='password_reset_done.html'
    ), name='password_reset_done'),

    path('reset/<uidb64>/<token>/', auth_views.PasswordResetConfirmView.as_view(
        template_name='password_reset_confirm.html'
    ), name='password_reset_confirm'),

    path('reset/done/', auth_views.PasswordResetCompleteView.as_view(
        template_name='password_reset_complete.html'
    ), name='password_reset_complete'),
]

✉️ Step 2: Configure Email Backend (for development)

EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'
DEFAULT_FROM_EMAIL = 'noreply@yourdomain.com'

For production, switch to SMTP or a transactional email service like SendGrid, Mailgun, or Amazon SES.

🎨 Step 3: Create Templates

Django expects the following templates by default:

• password_reset.html
• password_reset_done.html
• password_reset_confirm.html
• password_reset_complete.html

Example:

{% block content %}
  <h2>Forgot your password?</h2>
  <p>Enter your email address below, and we'll email instructions for setting a new one.</p>
  <form method="post">
    {% csrf_token %}
    {{ form.email.label_tag }}
    {{ form.email }}
    <button type="submit">Send reset link</button>
  </form>
{% endblock %}

You can fully customize these templates with Bootstrap or your site’s design to match your branding.

🔒 Step 4: Test the Flow

1. Visit /forgot-password/
2. Enter a registered user’s email
3. Check your console (or email inbox if SMTP is set)
4. Click the reset link and set a new password
5. You’ll be redirected to a success page

📌 Optional: Customize Email Template

Django uses the following default templates for email:

• registration/password_reset_email.html
• registration/password_reset_subject.txt

Example HTML Email:

<p>You're receiving this email because you requested a password reset for your user account.</p>
<p>Please go to the following page and choose a new password:</p>
<p><a href="{{ protocol }}://{{ domain }}{% url 'password_reset_confirm' uidb64=uid token=token %}">Reset Password</a></p>
<p>If you didn’t request this, ignore this email.</p>

Email subject template:

Reset your password

✅ Final Tips

• Use EMAIL_BACKEND = 'django.core.mail.backends.smtp.EmailBackend' in production.
• Ensure your domain is correct in the email context.
• You can override form_class if you want to customize the input form.

🚀 Conclusion

By using Django’s built-in password reset views and email system, you can implement a fully functional, secure, and user-friendly password reset system with minimal effort. You only need to connect the views via URLs, configure email settings, and style the templates as you wish.

Need help customizing your Bootstrap templates or setting up SMTP? Just ask!