Passwordless implementation not persisting session

We are using the New Universal Login with passwordless email. But the session does not persist for the logged in user even though our tenant settings has “persistent sessions” enabled. We have 2 separate uses of authorize endpoint. But right now its requiring the user to login with OTP twice. Using our previous implementation of username/password the session was persisted and automatically logged in the second time.

Is that by design of passwordless email? or is there a way to persist the session for a passwordless email login. I see that in the passwordless email challenge, response header that the cookie did_compat is being set, a cookie that is set for non persistent sessions.

1 Like

Looks like I was able to solve this using “prompt=none” query parameter in the authorization endpoint, if we know the user has already logged in.