We have a Passwordless auth setup via an Email connection in Auth0 that uses AWS SES as a custom email provider. We rotate our credentials on a regular cadence and happened to miss one of our tenants this time around. We were notified by a customer that they were not receiving a code via Email and went to investigate.
The logs show a successful operation -
cls is the type (Code Link Sent). There is no indication of a failure anywhere, and yet it would certainly be a 401 or 403 response from SES. The Auth0 Logs should be indicating when they cannot send an Email to login (or otherwise) so that we can know when there is an issue.