If I have a simple rule like so: Check last password reset
How can I force this to auto redirect to the Auth0 reset password page without going through an email process? I’ve looked and looked how to do this but maybe I’m missing something obvious?
Many thanks!
Hi @jgmellon,
I don’t think you want to do this, at least without some careful security analysis.
Using the password reset flow, e-mail and all, requires the user to have access to their e-mail, proving who they are.
If you take them directly to the page, this changes the flow.
This would require security analysis to make sure it is what you want.
Having said that, I think you can just get a password reset ticket from the management API and redirect to it, but I have never tried that.
John
Hey there!
As this topic is related to Rules - Hooks - Actions and Rules & Hooks are being deprecated soon I’m excited to let you know about our next Ask me Anything session in the Forum on Thursday, January 18 with the Rules, Hooks and Actions team on Rules & Hooks and why Actions matter! Submit your questions in the thread above and our esteemed product experts will provide written answers on January 18. Find out more about Rules & Hooks and why Actions matter! Can’t wait to see you there!
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.