You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I think for password-based flows, the third bullet point is fine since that seems to be standard industry practice.
For non-password based flows, I prefer the first bullet point over the second. Passcodes are initiated when a user enters their email on the login screen and we wouldn't need to construct a separate passcode flow for the recovery process. And, if passkeys are enabled, they can use that form of verification instead of passcodes.
I think both password and non-password based flows would need to be considered for this request.
As an Admin, I would love a way to initialize an account recovery on behalf of a user.
For that, the ability to change the email address / adding another email address for a user would be beneficial.
Just initiating a passcode wouldn't work because the user wouldn't be at the passcode entry screen. So we could either
The text was updated successfully, but these errors were encountered: