I don’t agree, the WTH still stands IMO.
Why can’t I do a password reset when I forget my HASS password?
With 0.115+ you can easily reset passwords for other users, and there is a CLI option for owners to use.
So far, so good 
But we have the person integration now, that ties a user and a device tracker (usually a phone).
Most phone trackers also have push capabilities, there must be a way that we can securely request a password change by utilizing that route?