Last Updated: Dec 5, 2024
Overview
This article clarifies why the feature flag allow_magiclink_verify_without_session set to true is seen when exporting tenant configuration with the deploy CLI.
Applies To
- Feature Flag
Solution
Generally speaking, feature flags hide new features or changes behind an optional flag to help prevent breaking changes and allow customers to opt-in to new features or migrations as they see fit.
The allow_magiclink_verify_without_session flag was added when a new default behavior was introduced recently to ensure that breaking changes were not caused for customers utilizing that specific flow, i.e., passwordless email connections using magic links.
The new default behavior that was introduced for increased security is the following: when using a passwordless email connection with magic links, the user can now only open the link from the same browser that started the flow.