Skip to content

This issue was moved to a discussion.

You can continue the conversation there. Go to discussion →

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Verification codes other than the first one are not working #137

Closed
MixaKonan opened this issue Dec 19, 2023 · 4 comments
Closed

Verification codes other than the first one are not working #137

MixaKonan opened this issue Dec 19, 2023 · 4 comments
Labels
bug This issue is a bug. module/cognito-ext response-requested Waiting on additional info and feedback. Will move to "closing-soon" in 7 days.

Comments

@MixaKonan
Copy link

Describe the bug

I'm not actually sure whether this is SDK or Cognito problem or maybe I just missed something, but any help would be much appreciated.

I have a user pool set up in AWS Cognito. I've created a user and made it confirmed be changing the password via RespondToNewPasswordRequiredAsync.

I'm trying to implement 'Forgot Password' feature in my system. After making a 'ForgotPasswordAsync' I successfully receive a verification code.

However, I also try to implement a 'Resend verification code' feature. And whilst I do receive a new code, I get an 'Invalid verification code' exception. And this happens for every code other than the first one.

image

I thought that maybe there is some time that enables new codes, but I've tried to wait 1, 5 and 10 minutes and no success was accomplished.

As I said, the first one received is working with no issues whatsoever.

image

Expected Behavior

Any received code should work or at least the latest one.

Current Behavior

Only the first code received works

Reproduction Steps

  1. Create a user pool in AWS Cognito.
  2. Create a new user with verified email.
  3. Change this user's password so it becomes 'Confirmed'.
  4. Make a 'Forgot Password' request with SDK.
  5. Receive a code but ignore it
  6. Make a 'Resend confirmation code' request with SDK.
  7. Make a 'Confirm Forgot Password' request with the latest code received

Possible Solution

No solutions were found

Additional Information/Context

No response

AWS .NET SDK and/or Package version used

Amazon.Extensions.CognitoAuthentication: 2.5.2
AWSSDK.CognitoIdentity: 3.7.300.10
AWSSDK.CognitoIdentityProvider: 3.7.300.10
AWSSDK.Core: 3.7.300.10

Targeted .NET Platform

.NET 6

Operating System and version

Windows 10, AmazonLinux (docker container)
@MixaKonan MixaKonan added bug This issue is a bug. needs-triage This issue or PR still needs to be triaged. labels Dec 19, 2023
@ashishdhingra ashishdhingra added module/cognito-ext needs-reproduction This issue needs reproduction. and removed needs-triage This issue or PR still needs to be triaged. labels Dec 19, 2023
@ashishdhingra
Copy link
Contributor

Needs investigation.

@ashishdhingra
Copy link
Contributor

ashishdhingra commented Dec 20, 2023
edited
Loading

@MixaKonan Good afternoon. I'm not sure if you are using the correct logic. The ConfirmForgotPassword is the service API operation invoked by CognitoUser.ConfirmForgotPasswordAsync().

How are you sending the verification code?

The ResendConfirmationCode API call Resends the confirmation (for confirmation of registration) to a specific user in the user pool.. In your use case, user is already registered. So ResendConfirmationCode is not valid for forgot password scenario. You should try re-invoking the CognitoUser.ForgotPasswordAsync() to resend forgot password verification code and it should resend the code (if Cognito supports it). Please let me know if it works.

Thanks,
Ashish

@ashishdhingra ashishdhingra added response-requested Waiting on additional info and feedback. Will move to "closing-soon" in 7 days. and removed needs-reproduction This issue needs reproduction. response-requested Waiting on additional info and feedback. Will move to "closing-soon" in 7 days. labels Dec 20, 2023
@MixaKonan
Copy link
Author

@ashishdhingra Good afternoon to you too. Indeed you were correct in your assumptions and I was actually using incorrect flow. I missed the difference between 'confirmation code' and 'password reset code' and it's actually stated in the documentation that 'ResendConfirmationCode' is used for registration only.

Resends the confirmation (for confirmation of registration) to a specific user in the user pool.

The issue is resolved and I will close it. Thank you very much for your support and the time wasted.

@github-actions GitHub Actions
Copy link

⚠️COMMENT VISIBILITY WARNING⚠️

Comments on closed issues are hard for our team to see.
If you need more assistance, please either tag a team member or open a new issue that references this one.
If you wish to keep having a conversation with other community members under this issue feel free to do so.

@aws aws locked and limited conversation to collaborators Dec 20, 2023
@ashishdhingra ashishdhingra converted this issue into discussion #138 Dec 20, 2023

This issue was moved to a discussion.

You can continue the conversation there. Go to discussion →

Assignees
No one assigned
Labels
bug This issue is a bug. module/cognito-ext response-requested Waiting on additional info and feedback. Will move to "closing-soon" in 7 days.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@MixaKonan @ashishdhingra