Custom branded password change email
When we use the "Send a password reset email" from Realm in Authentication->Email/Password, we can specify a URL and a subject line. That's great, but it would be good if we could make the e-mail itself a bit more branded.
The O-FISH app is currently using this, and an O-FISH user might be confused as to why this looks like a MongoDB reset password link.
We're fine with a "powered by MongoDB" footer or something, but we should be able to make the user understand that this link is OK to click, and that it came from the proper application.
As a user who's aware of security issues, I would be VERY wary if I got a reset password link that didn't look at all like the site I sent it from, and in fact looks like it was sent from another company.
For a customized email, we recommend running a customized confirmation/password reset function and using an email provider such as mailgun, sendgrid, or SES.