Skip to content
Start building
Back

Deleting users

  • 0
  • Auth
  • REST API
  • Cloud
View on Discord
nachol_
19 Dec, 2024, 00:36

I'm using users api from a cloud function to delete users https://appwrite.io/docs/references/cloud/server-nodejs/users#delete

But this only require user id Wouldn't be a good practice to require user password before deleting account?

Just like update password https://appwrite.io/docs/references/cloud/client-web/account#updatePassword https://appwrite.io/docs/references/cloud/server-nodejs/users#updatePassword

A person who is not the owner of the account could use user PC to delete its account

TL;DR
Solution: Developers can implement an additional security measure by requiring the user's password before allowing the deletion of an account. This can be similar to the password update feature. This extra step would increase the security of the deletion process, preventing unauthorized deletion by someone accessing the user's device.
Reply

Reply to this thread by joining our Discord

Reply on Discord

Recommended threads

Need support?

Join our Discord

Get community support by joining our Discord server.

Join Discord

Get premium support

Join Appwrite Pro and get email support from our team.

Learn more