From 550e533080ffe7ab30a2f4a4728e66440b628a31 Mon Sep 17 00:00:00 2001 From: Nicolas Lopes Date: Wed, 23 Oct 2024 11:26:46 -0300 Subject: [PATCH 1/2] (authentication/configuration/restrictions): update block email subaddress behavior --- docs/authentication/configuration/restrictions.mdx | 2 ++ 1 file changed, 2 insertions(+) diff --git a/docs/authentication/configuration/restrictions.mdx b/docs/authentication/configuration/restrictions.mdx index 54dd28b637..80b58b0593 100644 --- a/docs/authentication/configuration/restrictions.mdx +++ b/docs/authentication/configuration/restrictions.mdx @@ -75,6 +75,8 @@ For example, if you add `john.doe@clerk.dev` as a blocked email address, it mean > [!NOTE] > Existing accounts with email subaddresses will not be affected by this restriction, and will still be allowed to sign in. +> +> This feature aims to prevent malicious sign-in attempts. The first canonical email containing a subaddress will be allowed, but subsequent sign-ins using additional subaddresses will be blocked. To enable this feature: From 20ca0ca8854a80c0adab545f6e0ebf01232f3566 Mon Sep 17 00:00:00 2001 From: nicolas lopes <57234795+NicolasLopes7@users.noreply.github.com> Date: Wed, 23 Oct 2024 11:48:47 -0300 Subject: [PATCH 2/2] Update docs/authentication/configuration/restrictions.mdx Co-authored-by: victoria --- docs/authentication/configuration/restrictions.mdx | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/authentication/configuration/restrictions.mdx b/docs/authentication/configuration/restrictions.mdx index 80b58b0593..8035fb197e 100644 --- a/docs/authentication/configuration/restrictions.mdx +++ b/docs/authentication/configuration/restrictions.mdx @@ -76,7 +76,7 @@ For example, if you add `john.doe@clerk.dev` as a blocked email address, it mean > [!NOTE] > Existing accounts with email subaddresses will not be affected by this restriction, and will still be allowed to sign in. > -> This feature aims to prevent malicious sign-in attempts. The first canonical email containing a subaddress will be allowed, but subsequent sign-ins using additional subaddresses will be blocked. +> This feature is designed to prevent malicious sign-in attempts. The first email containing a subaddress will be allowed, but any subsequent sign-ins using additional subaddresses will be blocked. To enable this feature: