Is this suited for github?
Is your feature request related to a problem? Please describe.
Currently, we rely on afterEmailVerification, which is triggered when a user verifies their email through the email sign-up flow.
The problem is that this callback does not fire when using OAuth. For example, a user might first sign up with email and later log in via OAuth, at which point the user is already considered verified.
The core issue is that this logic depends on a callback that is triggered from the /email-verification route, which is never called during OAuth authentication.
Describe the solution you'd like
I understand that afterEmailVerification is intended only for the email sign-up method. However, it feels like it should also be triggered when a user’s email is automatically verified via OAuth.
Perhaps we could introduce a configuration option or flag that allows this verification callback to fire for OAuth-based sign-ins as well, while still allowing others to keep it restricted to email-only verification if they prefer.
Describe alternatives you've considered
And another option would be having a global onUserVerified that trigger whenever the user verified status changes to TRUE.
Additional context
No response
Is this suited for github?
Is your feature request related to a problem? Please describe.
Currently, we rely on afterEmailVerification, which is triggered when a user verifies their email through the email sign-up flow.
The problem is that this callback does not fire when using OAuth. For example, a user might first sign up with email and later log in via OAuth, at which point the user is already considered verified.
The core issue is that this logic depends on a callback that is triggered from the /email-verification route, which is never called during OAuth authentication.
Describe the solution you'd like
I understand that afterEmailVerification is intended only for the email sign-up method. However, it feels like it should also be triggered when a user’s email is automatically verified via OAuth.
Perhaps we could introduce a configuration option or flag that allows this verification callback to fire for OAuth-based sign-ins as well, while still allowing others to keep it restricted to email-only verification if they prefer.
Describe alternatives you've considered
And another option would be having a global onUserVerified that trigger whenever the user verified status changes to TRUE.
Additional context
No response