post-change-password trigger runs after a Database connection user resets or changes their password. Use this trigger to email the user after a password change or to notify another system that the user’s password has changed, so that other sessions not managed by Auth0 can be revoked. Multiple Actions can be bound to this trigger, and the Actions will run in order.

References
- Event object: Provides contextual information about the user and the connection on which the password was changed.
- API object: Provides methods for changing the behavior of the flow.
Common use cases
Invalidate the user’s session in another system
A post-change-password Action can be used to invalidate the user’s session in another system:To use an
npm library like axios, you must add the library to the Action as a dependency. To learn more, read the “Add a dependency” section in Write Your First Action.Send an email after the user changes their password
A post-change-password Action can be used to notify the user by email that their password was changed:For this Action to execute properly, the Action must contain a secret named
SENDGRID_API_KEY and must have a dependency on the axios npm package.