Should password recovery even be part of the login server? The alternative would be to direct the user at a dedicated service (which may have more sense if it's the only reason to introduce an accountserver dependency).
Pros of the former:
- easier to achieve UI / visual consistency, also just one endpoint to protect
Pros of alt service:
- isolate new dependency on accountserver (recovery bypasses the basic auth API)
- easier to iterate on UI or workflow changes