Kinetic Edge Health

User Story :
As a registered user, I want to reset my password if I forget it so that I can regain access to my account.

Acceptance Criteria :

The “Forgot Password” link should be available on the login page.
When clicked, the user is redirected to a Reset Password page with an input field for Email.
On submit :

The system checks if the email exists and belongs to a verified user.
If valid system sends a password reset link containing a secure token valid for 1 hour.
If invalid show message: “Email not found or not verified.”
When the user opens the reset link :

If the link is valid show the password reset form.
If the link is expired show message: “Reset link expired. Please request a new one.”
If the link is invalid show message: “Invalid reset link.”
New password form should include :

New Password (required, minimum 6 characters)
Confirm Password (must match)
On successful password reset:
Update the password securely in the system.
Redirect the user to the Login page with the message: “Password reset successful. You can now log in.”
Notes for QA :

Verify reset link works for valid, verified users only.
Test expired and invalid link behavior.
Confirm that after reset, the new password works and old one doesn’t.
Check validation for mismatched passwords.
Verify redirect to login after successful reset.