# Validate password recovery code

Step 2 of password recovery: validates the recovery code sent to email. On success, stores a temporary flag allowing the password to be changed in the next step. Must NOT be authenticated - returns error if called with an active session.

Endpoint: POST /api/v1/accounts/password/recover/check-code
Version: 1.0
Security: 

## Request fields (application/json):

  - `login` (string, required)
    Email or username
    Example: "user@gmail.com or john_smith"

  - `code` (integer, required)
    Confirmation code
    Example: 854882

## Response 400 fields (application/json):

  - `errorCode` (string, required)
    Error code

  - `message` (string, required)
    Error message

  - `docUrl` (string)
    Link to documentation

## Response 404 fields (application/json):

  - `errorCode` (string, required)
    Error code

  - `message` (string, required)
    Error message

  - `docUrl` (string)
    Link to documentation


