Problem Statement
We are enabling block on the compromised accounts via breached password configuration. We need to test this feature in our QA. With the sample account shared in the documentation (Breached Password Detection), we are able to test the block, but we need to verify the following:
- Email notification getting sent to the user whose account is compromised - email sending and content and link verification
- OTP success login for the user even if the account is blocked due to a password breach
- Reset password for those accounts via email link and from the UI
- User block removed and able to login after password reset
What email and password to use for the test?
Solution
You may use any Auth0 DB user email with the password Paaf213XXYYZZ for the test.