The ResetType is passed to the allowPasswordReset() method of
IPasswordPolicyForReset interface. If the ResetType is blank, password
reset is not allowed. The API generates a random character set and
stores it as RequestId. The RequestId is passed to RESET_PASSWORD.ON_REQUEST
event. The event RESET_PASSWORD.ON_REQUEST is triggered once a password
reset is requested. If the attribute ResetType is set to Email for
the given user ID, then the RequestId is sent to the user through
e-mail.
The changePassword API must be called to reset or change the actual
password.