One of my users cannot access my studio because they are stuck in a password reset loop. This is the flow (I reproduced it myself, too):
1. They clicks reset password
2. They gets the password reset email
3. They click confirm reset
4. It sends her back to the password reset screen
I sent an email about it to the info address a week ago. I never heard back, even though I mentioned that this is an urgent issue for me. Please advise. Thanks!
Hey @ravit — sorry this slipped through the inbox. I was able to reproduce the reset loop and escalated it to the auth team a few minutes ago so we can get the token flow patched without waiting on the next full deploy.
Can you email info@pickaxe.co with the affected user’s email plus the approximate time of their last reset attempt (and mention this thread in the subject)? That lets us pull the exact token from the logs and double-check whether verification is returning 200 before we drop them back on the request form.
Temporary workaround until the fix lands: in your Studio go to People → search that user → click the “Reset password” action in the overflow menu. That forces a manual password set link that is not subject to the loop, or you can set a temporary password for them directly and have them change it after signing in.
I’ll update this thread as soon as engineering ships the permanent fix. Appreciate your patience — I know being locked out is brutal.
Yes, it’s working now. Thanks!