While testing our Facebook social login we noticed that in one of the cases the email address is missing from the Auth0 user profile. We verified the Facebook account has a primary email address and the email checkbox (and therefore scope) has been checked when first logging in. No reason the email address should be missing, because with another account it works as expected. We also tried removing the app from the Facebook account and deleting Auth0 profile (starting fresh). Without any luck.
Another strange thing is
email_verified = truein the RAW JSON tab of the user profile, while the
Apparently the same issue as user hsq125. See https://community.auth0.com/questions/8272/cant-get-email-from-id-token#answer-8650
This discussion might be useful: https://github.com/mkdynamic/omniauth-facebook/issues/61. The user borama mentions it happens in 2% of the logins (comment from 2012, so might be unrelated). This might be innacurate, but the fact that it happened on our second test is alarming. It breaks our login flow and requires dirty hacks to solve.
Anyone has an idea how to resolve this?
I can’t provide steps to reproduce, but are willing to demonstrate through a TeamViewer session if needed.