Description
We allow administrators to reset a user's password via the CLI by connecting directly to the database (#1380). Otherwise, users may change their password in their account settings.
As a user, when I forget my password, I would like to reset it autonomously. This flow is facilitated in most products through a reset password link delivered to the user's email. We can implement the same flow using the new system-generated notifications.
When SMTP notifications are configured for a deployment, a new option would appear on the login page:
They'd then receive an email containing a link to create a new password.
Note
This would introduce a security vulnerability for teams, so admins should be able to disable the feature for their deployment or organization (once merged).