Hi, this is my attempt to tackle the paranoid option to hide user existence when requesting token on Sep 21
When the paranoid flag is enabled, and a user tries to sign in with a non existing email:
The same behavior will be shown to the user.
No email will be sent to non existing emails/user.
A session will still be created for non existing emails/user. I am not sure how big of a deal it is, so I left it like that for now.
Hi, this is my attempt to tackle the paranoid option to hide user existence when requesting token on Sep 21 When the paranoid flag is enabled, and a user tries to sign in with a non existing email: