My goal is to ask users to complete an MFA challenge before they can reset their password. The rough-draft action above is what I have between the “Start” and “Complete” in the Password Reset / Post Challenge trigger. The problem is that after I click the password reset link in my email and get brought to the challenge screen, I get two back to back MFA codes instead of just one, and I can see that the action’s been triggered twice in the action logs, even when I remove the MFA challenge line and only keep console.log(), is this a bug with password reset trigger pipeline or could I have something misconfigured? Thanks!
Looking at your Action code, there is no immediate indication that it would trigger two MFA prompt and I believe that it’s very likely some other factor might be causing this behaviour for you, such as another Action could also be configured to prompt for MFA.
I suggest unbinding other Actions ( if there are others ones ) and test this flow again on it’s own. If you are getting the correct behaviour, then your pw-reset|post-challenge Action works correctly, but another one interferes. In addition, I recommend also reading through our following documentation and checking out the Action template mentioned in the Password Reset Triggers - Auth0 Docs doc.
You can see that the behaviour here is worse than the other tenant and I haven’t added any code for MFA specifically. If i change the code in the other tenant to only have the log statement and no MFA I still see it being triggered twice when I go through the flow.