Hi Auth0 community,
I’m gonna quickly introduce myself, I am a French NEWBIE in Auth0 and its world and I am actually a studend in UI / UIX Design.
The idea is simple ; I have an existing Database and I want my users to :
- Login through their email and as soon as they login, they HAVE TO change their password.
I found this topic interesting :
I followed it but nothing work for me.
Any other clue ?
Thanks for reading me
Have a nice day !
Welcome to the Auth0 Community. It’s great to have you onboard.
We have a document that demonstrates how you might achieve this via rules here https://auth0.com/docs/customize/rules/redirect-users#force-password-change-example
Please give this a go and let us know how you get on.
In addition to what @SaqibHussain said, I would add “don’t do this”. Forcing users to reset their password this way is an anti pattern. It probably means you sent them a clear text password via email, which is an insecure thing to do.
Instead, you should send them a password reset link, so they set their own password.
I followed the steps you sent me and It worked ! Thanks a lot for your help and your time.
Also, thanks a lot @john.gateley for your advice, I took it in consideration and it will be safer to use a password reset link instead of a clear text password.
Have a great days guys
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.