logto-io
feature request: Login / forgot password links in custom emails
What problem did you meet?
Users unable to finish creating their account - there is no way for them to do this.
Describe what you'd like Logto to have
We currently add users to the platform via API. When that happens, their password, phone or MFA are not automatically setup. There seems to be no current wait to allow someone to finish their own setup? The system should allow for generating an email with a login link to continue setting everything up.
Hi @vinnytroia, the team is looking into this and we'll get back to you once we have a conclusion.
This issue is stale because it has been open for 30 days with no activity.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
This issue is stale because it has been open for 30 days with no activity.
If your goal is to invite users by email so they can register and sign in, below are two approaches:
Option 1: Add user in Console/via API + Forgot password (Not recommended) You can pre-create user accounts in the Logto Console > User management (Add the user's email & generate password). Then have the user user "Forgot password" flow to set a new password when they first sign in. This works, but Logto currently does not provide an API to trigger the “Forgot password” flow programmatically, so it provides a less smooth experience for users.
Option 2: Send magic link with one-time token (Recommended) Your backend requests a one-time token for a specific email and sends the user a Magic Link (containing that token). When the user clicks the Magic Link, Logto checks whether that email is already registered. For new users, the email is treated as verified and the user is taken to set their new password and the following profile fulfillment for registration. For existing users, they can bypass sign-in (MFA will still be enforced if enabled). Reference: https://docs.logto.io/end-user-flows/one-time-token
