WAPIsv2.0.0User
Update Password
Update the authenticated user's account password
Update the password for the authenticated user's account.
Endpoint
PATCH /user/password| Access | Requirement |
|---|---|
| Authenticated | Yes |
| Required Scope | wapi-user-update, or wapi-user-all |
| Rate Limit | 3 requests per minute |
Request
Headers
| Header | Value |
|---|---|
Accept | application/json |
Authorization | Bearer <access_token> |
X-WAPI-Key | wapi_live_<kid>_<secret> or wapi_test_<kid>_<secret> |
Send exactly one of Authorization or X-WAPI-Key.
Body (form-data)
| Parameter | Type | Required | Description |
|---|---|---|---|
old_password | string | Yes | Current account password |
new_password | string | Yes | New password (8–30 characters) |
confirm_password | string | Yes | Must match new_password |
Notes:
old_passwordmust match the current account password.new_passwordmust differ fromold_password.- On production,
new_passwordis checked against WiPay's secure password policy (minimum 8 characters, at least one lowercase letter, one uppercase letter, one digit, and one special character).
Responses
200 OK
{
"message": "OK"
}400 Bad Request
{
"message": "The old password does not match your current password."
}401 Unauthorized
{
"message": "Unauthorized"
}403 Forbidden
{
"message": "Invalid scope(s) provided."
}Example
curl -X PATCH "https://ttsb.wipayfinancial.com/wapi/user/password" \
-H "Accept: application/json" \
-H "Authorization: Bearer <access_token>" \
-F "old_password=OldP@ssw0rd" \
-F "new_password=NewP@ssw0rd" \
-F "confirm_password=NewP@ssw0rd"