When WOLF-227 is implemented, there will be no way to retrieve a users password with one way encryption so we'll need to generate some kind of one time password reset token. Initial thoughts are we can set the users "token" field and send that to the user. When the token is used, the auth interceptor will check if it's valid and let the user update their password.