How to Determine Whether User Registration was from Universal Login or API in Actions?

I would like to create a post user registration action that sends a password reset email only if the user is created from the Auth0 management API, not the universal login. Is there a way to determine the source of the action call?

Hey there @Sbm welcome to the community!

The easiest way to go about this might be to just add a flag in user metadata when creating users via the API - This way you can check for the flag in the post registration action and implement any necessary logic:

Create User with "api": true flag in user_metadata

curl -L 'https://{}your_domain}' \
-H 'Content-Type: application/json' \
-H 'Accept: application/json' \
-H 'Authorization: Bearer {management_api_access_token}' \
--data-raw '{"email":"","user_metadata":{"api":true},"blocked":false,"email_verified":false,"app_metadata":{},"given_name":"foo","family_name":"bar","name":"foo","nickname":"foobar","connection":"Username-Password-Authentication","password":"xxxx","verify_email":false,"username":"foobar1"}'

Example post registration action:

exports.onExecutePostUserRegistration = async (event, api) => {
  const ManagementClient = require('auth0').ManagementClient;

  // Initialize management client
  const management = new ManagementClient({
    domain: event.secrets.domain,
    clientId: event.secrets.clientID,
    clientSecret: event.secrets.clientSecret,

  // Define the user's ID
  const userId = event.user.user_id;

  if (event.user.user_metadata.api === true) {
    // Send a password reset email
    management.requestChangePasswordEmail({ user_id: userId }, (err) => {
      if (err) {
        console.error('Error sending password reset email:', err);
      } else {
        console.log('Password reset email sent successfully.');

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.