we discovered an strange behaviour on password resetting. When a user clicks on a password reset link, he will get the error “The following attributes are missing: password_policy”.
We are using a custom database with password strength “none empty passwords”. This worked very fine for use, but since some time (days? weeks?) this error message will be presented. When I set the password strength at least to 6 characters, it is working again.
I work with two different auth0 accounts and its happen only in one of them. (there mostly identically)
Is this an intended behaviour or did we something wrong (except using a weak security setting )?