0Auth Email Verification

[CameeronS]

Hey first of all, i want to say a huge thanks to @pilcrowonpaper for this amazing Auth library!

I have a question regarding email verification upon logging in with a 0Auth provider say Google or Github etc..

Is it considered a good practice to validate that the email associated with the OAuth account is verified?

Say i create an Authorization url and i fetch the user data from the Google api and check if the email is valid or not should i require them to verify the email if the verified field is false before they can login with say Google in this example?

I have implemented email verification with email and password but this part i'm not so sure about?

Thanks in advance! 😄

[pilcrowonpaper]

Depends on if you need the email to verified. You usually want to validate it if you need to send emails or link multiple accounts