Skip to main content
The post-change-password trigger runs after a Database connection user resets or changes their password. Use this trigger to email the user after a password change or to notify another system that the user’s password has changed, so that other sessions not managed by Auth0 can be revoked. Multiple Actions can be bound to this trigger, and the Actions will run in order.
Diagram showing the Actions Post Change Password Flow.
Actions in this flow are non-blocking (asynchronous): the Auth0 pipeline continues to run without waiting for the Action to finish, so the Action’s outcome does not affect the Auth0 transaction.

References

  • Event object: Provides contextual information about the user and the connection on which the password was changed.
  • API object: Provides methods for changing the behavior of the flow.

Common use cases

Invalidate the user’s session in another system

A post-change-password Action can be used to invalidate the user’s session in another system:
To use an npm library like axios, you must add the library to the Action as a dependency. To learn more, read the “Add a dependency” section in Write Your First Action.

Send an email after the user changes their password

A post-change-password Action can be used to notify the user by email that their password was changed:
For this Action to execute properly, the Action must contain a secret named SENDGRID_API_KEY and must have a dependency on the axios npm package.