Password validation is showing after preUserRegistration Action.
api.access.deny('foo','bar') in a preUserRegistration action displays the message under the password field (better if I could control the location) but the password validation message also triggers. This is very confusing to users. Is this a bug in the new Universal Login?
I am using the overloaded function call that provides the internal reason plus a message param. Following your syntax, aka api.access.deny(āreasonā), the internal message for logging purposes would be defined and the user would see a generic message āAccess Deniedā. AccessAPI.deny(reason: string, userMessage: string): however, provides a custom message to the user. Both result in the password validation message appearing in addition to the custom or generic error message from api.access.deny.