Amplify-js: RESET_REQUIRED case is not implemented in amplify-js/packages/amazon-cognito-identity-js/src/CognitoUser.js

Created on 24 Jan 2019  路  13Comments  路  Source: aws-amplify/amplify-js

Is your feature request related to a problem? Please describe.
When user status is NEW_PASSWORD_REQUIRED is OK but not RESET_REQUIRED

Describe the solution you'd like

if (challengeName === 'NEW_PASSWORD_REQUIRED') {
    ....
     return callback.newPasswordRequired(userAttributes, requiredAttributes);
}

add this:

if (challengeName === 'RESET_REQUIRED') {
     ...
     return callback.resetRequired(userAttributes, requiredAttributes);
}
Cognito feature-request
Source
picture sgrillon14
👍3

Most helpful comment

Can we get this re-opened?

picture simpson on 2 Feb 2020
👍5

All 13 comments

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

stale[bot] picture stale[bot] on 15 Jun 2019

What do you need as information to implement this part?

sgrillon14 picture sgrillon14 on 16 Jun 2019

@sgrillon14 Inside of Amplify, we do have this workflow. Are you looking to not use Amplify just the Cognito piece ? Please let us know if this is a valid use case for you. If not, please feel free to close this request.

sammartinez picture sammartinez on 19 Nov 2019
👍1

This use case is a basic case but the users of the library are obliged to tinker to implement this case. The basic case is that a cognito admin creates users. Users arrive in this case from the first use, without skip this step, they will never use the application.

Example: https://github.com/NoraUi/bakery/blob/6a7c9c6d00ff7af40a6aa6d3108f86be49d2592e/bakery-front/src/app/shared/services/aws/aws.service.ts

onFailure: err => {
          console.log(err);
          if (err.code === 'PasswordResetRequiredException' || err.code === 'UserNotConfirmedException') {
sgrillon14 picture sgrillon14 on 20 Nov 2019

Can we get this re-opened?

simpson picture simpson on 2 Feb 2020
👍5

@sammartinez, I have same question as @simpson. Will there be any solution of how to handle "RESET_REQUIRED" from amplify perspective?

My case is like this:
In case of something going wrong from user perspective we might need to reset password from AWS Cognito. Cognito then sets status to following: "Account Status | Enabled聽/聽RESET_REQUIRED".
When tried to login with the user I receive following response message: "Password reset required for the user". Now the thing is that I can't set up new password from Amplify, because to do that I would need to have "User" object that I can't access.

I've tried to use "Auth.forgotPasswordSubmit" & "Auth.forgotPassword" to set password with code, but then I get a response that I can't send code: "Can't resend confirmation code for this user".

Is there some kind of workaround over this?

mishellnovosel picture mishellnovosel on 11 Aug 2020
👍1

I too am facing similar problem, on importing some users via CSV, their account status shows as RESET_REQUIRED, when trying to login via Amplify, it returns NotAuthorizedException, Incorrect username or password.

How does frontend know that for this user password reset is required?

vrunda-thacker picture vrunda-thacker on 17 Aug 2020
👍3

I actually do have a solution to "RESET_REQUIRED" after you click on it in Cognito ( NOT importing users ). I received the reset Code via registered user email ( I received it after few hours - and that caused the issue ).
With that Code and message "Password reset required for the user" I'm redirecting a user to "Reset password" screen where he enters the received code and new password ( same as if user asked password reset on his own ).

  • The main issue I see here is that his Code has expiration time, and what if user doesn't receive it. Do the admin needs to reset it everytime? Can there be some method to trigger that from frontend side ( as Auth.forgotPassword isn't working )?
mishellnovosel picture mishellnovosel on 17 Aug 2020

@vrunda-thacker did you ever solve this issue ?

I have the exact same issue: Importing users works, status is RESET_REQUIRE but amplify always gives the error NotAuthorizedException and not the proper PasswordResetRequiredException which is expected. Using amplify.signIn() pretty much makes it impossible to use now, since we can't import several 100 of users (or we can import them but none of them will be able to reset their passwords)

Tried earlier versions of amplify as well + tried to recreate user pool and reimport etc, but still same issues.
Am I missing something fundamental or is this a major bug ? How have other people solved this (having a hard time seeing that other people using amplify have never used this feature)
Many thanks!

cc @norahsakal

klintan picture klintan on 27 Aug 2020

Any updates on this? I believe it's the same/similar problem to:
https://github.com/aws-amplify/aws-sdk-ios/issues/2298
Which identified the bug on the AWS side and was supposedly being fixed.

danielbressan picture danielbressan on 14 Sep 2020

Got the same issue here, wondering how we can get past this with amplify?

boyney123 picture boyney123 on 25 Nov 2020

I too am facing similar problem, on importing some users via CSV, their account status shows as RESET_REQUIRED, when trying to login via Amplify, it returns NotAuthorizedException, Incorrect username or password.

How does frontend know that for this user password reset is required?

Did you manage to fix this @vrunda-thacker?

boyney123 picture boyney123 on 25 Nov 2020

I am also having this issue, I have a user permanently logged out at this point....

tramert picture tramert on 26 Nov 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

shinnapatthesix picture shinnapatthesix  路  3Comments
DougWoodCDS picture DougWoodCDS  路  3Comments
TheRealRed7 picture TheRealRed7  路  3Comments
rygo6 picture rygo6  路  3Comments
simon998yang picture simon998yang  路  3Comments