Description: ## What needs to be done - Create POST /auth/forgot-password endpoint - Generate password reset token - Send reset email with token link - Create POST /auth/reset-password endpoint - Validate token and update password - Expire token after use ## Acceptance Criteria - [ ] Forgot password email sent successfully - [ ] Reset token expires after 1 hour - [ ] Password updated after valid token - [ ] Old token invalid after password reset
Description:
What needs to be done
Acceptance Criteria