We are finding users that passwords can not be changed for, it isn’t every user. Some work some don’t.
We are sending a PATCH to /api/v2/users/{userid} with json containing the passord, verify_password, and connection. This has been running in production for around a year and a half.
The users that the password changes will not work for, get back an error “email or username required” and the same is found in the logs. The log is interesting as well. Unlike other changes that show an “Api Operation” and then a log for the change, there is only the change on this call. The log record does not include the userid or any other information, though in the body section it does have an id with matches the one we send but with “auth0|” stripped off… no other api log shows like this.
I have spent hours debugging and making sure we are sending what is required and even tried in postman. Same results, but then there are other users that the api has no issue with at all.
Please advise.