Authentication Flow Issue: Email Verification Not Syncing Across Sign-In Methods
We have a bug in our authentication flow that creates a confusing user experience:
User creates an account with email & password
User navigates to sign-in page
Instead of using their email & password, user chooses "Sign in with Google" (using the same email)
System creates a linked account correctly, BUT:
Even though the user authenticated through Google (which should verify their email), the email verification status is not updated
When the user later tries to sign in with email & password, they're still redirected to the email verification page
The expected behavior would be that signing in with Google (or any other social provider) should automatically verify the email address since Google has already validated ownership of that email. This would eliminate the need for a separate email verification step when using the same email.
Has anyone encountered a similar issue or have suggestions for fixing this authentication flow problem?
0 Replies