Hi,
I’m looking for a way to identify user performing OTP from a new or unknown device.
Currently, my way of implementation is looking at the auth0 log for type gd_auth_succeed where device id is new but somehow when re-OTP from the same browser and device, Auth0 somehow generate new device id.
Backup plan is to look and store the user_agent value but somehow, it may not be accurate as user may perform OTP from the same browser and OS but on different laptop.
Example of user_agent value: Chrome 79.0.3945 / Windows 10.0.0
Thanks,
Santo