mirror of
https://github.com/logto-io/logto.git
synced 2024-12-30 20:33:54 -05:00
5aab7c01bf
* fix(core): add sso only email guard add sso only email guard to registration and profile fulfilling flow * chore: update changeset update changeset * chore(core): update content update content * fix(core): update content update content
12 lines
525 B
Markdown
12 lines
525 B
Markdown
---
|
|
"@logto/core": patch
|
|
---
|
|
|
|
prevent user registration and profile fulfillment with SSO-only email domains
|
|
|
|
Emails associated with SSO-enabled domains should only be used through the SSO authentication process.
|
|
|
|
Bug fix:
|
|
|
|
- Creating a new user with a verification record that contains an SSO-only email domain should return a 422 `RequestError` with the error code `session.sso_required`.
|
|
- Updating a user profile with an SSO-only email domain should return a 422 `RequestError` with the error code `session.sso_required`.
|