Overview
This article clarifies what happens with subsequent actions after calling api.access.deny().
Applies To
- Actions post-login flow
Solution
Calling api.access.deny() stops the execution of all subsequent actions.
As documented in Actions Triggers: post-login - API Object:
- Mark the current login attempt as denied. This will prevent the end-user from completing the login flow. This will NOT cancel other user-related side effects (such as metadata changes) requested by this Action. The login flow will immediately stop following the completion of this action, and no further Actions will be executed.