1 Answer
- Newest
- Most votes
- Most comments
0
The issue is discussed here: https://repost.aws/knowledge-center/cognito-forgot-password
Specifically:
Users created by administrators are in a FORCE_CHANGE_PASSWORD status by default until they sign in with the password provided. Then, users are prompted to change the password. If the user status is FORCE_CHANGE_PASSWORD, then the ForgotPassword API call can't be used and the verification code isn't sent.
An alternative approach is not to set MessageAction='SUPPRESS'
, which will make Cognito send an email to the user's registered email with the temporary password. Once they sign up using this, all should work.
answered 3 months ago
Relevant content
- asked a month ago
- AWS OFFICIALUpdated 8 months ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 2 years ago