How I think this should be done:
similarly to password reset. When email change is requested, a link to change it is sent to current email. But change can only be requested when the user is logged in.
If user no longer has access to current email, then they should contact support.
I'm not sure if its the best way but it should be the simplest with acceptable security level.
so users don't have to ask for that in chat.
How I think this should be done: similarly to password reset. When email change is requested, a link to change it is sent to current email. But change can only be requested when the user is logged in.
If user no longer has access to current email, then they should contact support.
I'm not sure if its the best way but it should be the simplest with acceptable security level.