search

CityOfLosAngeles / angeleno-my-account

App that allows Angeleno Account holders to update their profile, password, MFA, and app consent.
MIT License
1 stars 0 forks source link

Email Verification in Auth0 #64

Closed cbhernan closed 5 hours ago

cbhernan commented 9 months ago

Problem

Users can currently sign up to our Auth0 tenant using any email, this creates a problem as the email is not verified before adding to the database, so when the actual user with the email tries to sign up they won't be allowed because their email will already exist in database.

Proposed Solution

We need to find a way to verify the user's email, and create a job that will remove any emails that are not verified within a certain time.

Resources

https://community.auth0.com/t/how-to-deal-with-unverified-users/91808 https://community.auth0.com/t/how-to-clean-up-stale-accounts/86420/3

cbhernan commented 9 months ago

Require Email Verification Auth0 Action in Login Flow

Screenshot 2023-12-06 112638
nickchaula commented 5 hours ago

Email verification being done, issue being handled on Auth0 config repo