Blocked user can still login by using the forgot password feature #10776
Labels
issue: bug
Issue reporting a bug
issue: security
Issue reporting a security problem
severity: medium
If it breaks the basic use of the product but can be worked around
source: plugin:users-permissions
Source is plugin/users-permissions package
status: confirmed
Confirmed by a Strapi Team member or multiple community members
Projects
Bug report
Describe the bug
Blocked user can still login by using the forgot password feature
Steps to reproduce the behavior
Expected behavior
Blocked user shouldn't be able to send forgot password request
Screenshots
If applicable, add screenshots to help explain your problem.
Code snippets
If applicable, add code samples to help explain your problem.
System
Additional context
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered: