.

src/api/end-user/controllers/end-user.js

@@ -111,4 +111,34 @@ module.exports = createCoreController("api::end-user.end-user", () => ({
       message: "OTP sent successfully",
     });
   },
+
+  async resetPassword(ctx) {
+    console.log(ctx.request.body);
+    const { email, password } = ctx.request.body;
+    const currentUser = await strapi
+      .query("plugin::users-permissions.user")
+      .findOne({
+        populate: ["user"],
+        where: {
+          $and: [{ email: email }],
+        },
+      });
+    //   Check if its already existing in vendor entity
+    console.log("currentUser", currentUser);
+
+    await strapi.entityService.update(
+      "plugin::users-permissions.user",
+      currentUser.id,
+      {
+        data: {
+          password: `${password}`,
+        },
+      }
+    );
+
+    ctx.send({
+      ok: true,
+      message: "New password updated",
+    });
+  },
 }));

src/api/end-user/routes/custom-routes.js

@@ -8,6 +8,14 @@ const routes = {
           // some configuration...
         }
       },
+      {
+        method: "POST",
+        path: "/end-user/reset-password",
+        handler: "api::end-user.end-user.resetPassword",
+        config: {
+          // some configuration...
+        }
+      },
       
     ]
   };