I’m implementing a custom universal login for my passwordless system. I’m having trouble with the email verified status using the Auth0.js library.
When a new user starts their first authentication process, after the
webAuth.passwordlessStart, I expect the response
emailVerified to be false, which is what I get. After a successful authentication (after
webAuth.passwordlessLogin, I would expect the user’s email to be marked as verified (
email_verified: true). User management also shows this accordingly on the dashboard.
However, every authentication after the initial one,
webAuth.passwordlessStart keeps returning
emailVerified as false.
In conclusion, the emailVerified value in passwordless login seems to be inconsistent to the actual status.
Btw, response_type is set to token all through.
Looking forward to your response. Kind regards!