Document options for change password during a slow migration (#2477)

* Capturing some knowledge that came up during a support discussion * minor formatting change
FusionAuth · Sep 5, 2023 · 1d469c4 · 1d469c4
1 parent 5ea2d6c
commit 1d469c4
Showing 1 changed file with 12 additions and 1 deletion.
diff --git a/site/docs/v1/tech/migration-guide/general.adoc b/site/docs/v1/tech/migration-guide/general.adoc
@@ -618,14 +618,25 @@ The message displayed in the user interface when someone enters the "forgot pass
 
 There's an https://github.com/FusionAuth/fusionauth-issues/issues/895[open issue discussing how to improve this experience]. Please upvote or add any comments there.
 
-Another option is to:
+===== Other Options
+
+You have two other options in this case, both of which require integration work.
+
+You can look for failed logins.
 
 * Set up a webhook for link:/docs/v1/tech/events-webhooks/events/user-login-failed[failed login].
 * Check to see if the email address exists in your legacy user data store.
 * If the user exists, migrate the user data via the link:/docs/v1/tech/apis/users#create-a-user[User API], setting [field]#sendSetPasswordEmail# to `true`.
 
 This will force the user to reset their password, which may be a surprise to them, but will let them continue to access their account without contacting customer service. If you pursue this option, make sure you consider the content of the Set Password email template.
 
+You can a fire off an event to an API of your own when a user visits the forgot password page.
+
+* Write JavaScript code that runs on the forgot password page. Install it via a custom theme. The JavaScript can fire an event with the user's email to an API endpoint which you'd write. Fire this event whenever a user submits a 'forgot password' form.
+* Have the API endpoint look up the user in the legacy system. If the user exists in the legacy system, query to see if they exist in FusionAuth.
+* If they do not exist in FusionAuth but do in the legacy system, migrate the profile data.
+* After they are migrated, trigger the link:/docs/v1/tech/apis/users#start-forgot-password-workflow[reset password email via FusionAuth API].
+
 ==== The Registration Use Case
 
 What happens when a user attempts to register for an application and you are in the middle of a slow migration? There are two scenarios: