Hi there, I am using management API to update user’s password on backend service. But I found that after the password has been updated, session become expired when I refresh the page. It’s okay to invalidate cookie for other places but not the tab that user manage to change their password. It cause a very bad user experience for me, how to prevent that or any workaround for that?
Welcome to Auth0 Community !!!
After a password is changed, the Auth0 user session expires at the backend. This is implemented this way for security reasons. So there is no work around it.
Hope it helps
Jeff