Auth0 Password Reset Sets Email Verified to True but Does Not Send a Welcome Email
Last Updated:
Overview
When an Auth0 user resets a password, Auth0 marks the email address as verified but does not send a Welcome Email because the action requires a verification ticket rather than a password reset ticket. To request a change to this behavior, submit a feature request.
If an administrator enables both the verification email and the Welcome Email, creating a user through the Management API triggers the verification email. If Auth0 also sends a password reset email and the user resets the password before opening the verification email, Auth0 sets the email_verified attribute to true but does not send a Welcome Email. Subsequently, clicking the verification email link produces an Email is already verified error.
Applies To
- Auth0
- Password Reset
- Email Verification
- Welcome Email
Cause
This is the expected behavior. Once a user verifies an email address via a verification ticket, Auth0 sends a Welcome Email. If an administrator disables the Verification Email feature, Auth0 sends the Welcome Email when the user signs up or logs in for the first time.
The intended behavior triggers the Welcome Email based on a verification ticket, not the email_verified attribute. A password reset ticket does not function as a verification ticket.
Solution
Why does Auth0 fail to send the Welcome Email after a password reset?
Auth0 operates as designed in this scenario. The Welcome Email requires a verification ticket to trigger, which a password reset does not generate.
Auth0 accepts feature requests to change this behavior.
To request this functionality in a future release of Auth0, submit a feature request using the Auth0 feedback form.