Force user on first Login to reset their password

Hi Auth0 community,

I’m gonna quickly introduce myself, I am a French NEWBIE in Auth0 and its world and I am actually a studend in UI / UIX Design.

The idea is simple ; I have an existing Database and I want my users to :

  • Login through their email and as soon as they login, they HAVE TO change their password.

I found this topic interesting :

I followed it but nothing work for me.

Any other clue ?

Thanks for reading me

Have a nice day ! :smiley:

Hi @7Lee

Welcome to the Auth0 Community. It’s great to have you onboard.

We have a document that demonstrates how you might achieve this via rules here

Please give this a go and let us know how you get on.

Warm regards.


Hi @7Lee

In addition to what @SaqibHussain said, I would add “don’t do this”. Forcing users to reset their password this way is an anti pattern. It probably means you sent them a clear text password via email, which is an insecure thing to do.

Instead, you should send them a password reset link, so they set their own password.


1 Like

Hi guys

I followed the steps you sent me and It worked ! Thanks a lot for your help and your time.

Also, thanks a lot @john.gateley for your advice, I took it in consideration and it will be safer to use a password reset link instead of a clear text password.

Have a great days guys



This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.