| Announced on | Rollout starts | Rollout ends |
| April 3, 2025 | April 3, 2025 | April 11, 2025 |
As of today, we’re introducing two new properties to the User Identities API that will help provide clarity and trust as to whether a user has verified their email address, including how and when that verification took place. With this update, you’ll be able to track the method of verification to understand if the email address is a reliable point of contact and one that the user has access to.
This announcement includes the following topics:
What’s changing?
We’re adding two new properties to the User Identities API: verification_method and verified_at. The verified_at property returns the date and time when verification_method is updated to "full". It does not update for other values and clears if the verification_method changes from "full" to any other value. Both properties are read-only and can only be set by Zendesk.
Below is a description of the verification_method property, its possible values, and the resulting verified property value.
|
verification_method property |
Description |
verified property |
|
none |
An email address has been added to a user’s profile, but without proof of ownership |
verified=false |
|
low |
An agent or an API request has set the email as verified |
verified=true |
|
sso |
The Identity Provider (IdP) has included the email as part of the single sign-on (SSO) login flow |
verified=true If your SSO is configured using OpenID Connect, we will respect the value that’s passed in the email_verified claim. |
|
embed |
The email was provided in a JWT as part of an embedded Web Widget or SDK login flow. See Setting up user authentication for messaging |
verified=true |
|
full |
Zendesk has completed an email verification flow first hand |
verified=true |
Why is Zendesk making this change?
Currently, an email address identity on the User Identities API that’s marked as "verified=true" doesn’t specify the method used for verification, leading to uncertainty about whether a verified email address is actually trustworthy. With these new properties, we’re going to change that. Here’s how they’ll benefit you:
- You’ll know how each email was verified—by a team member, through an external system, or directly by Zendesk. This helps you decide which email addresses you can trust.
- When an email is marked as verified through the "full" verification method, it indicates that the user has demonstrated that they can access that email inbox. This gives you confidence that you’re reaching a real person.
What do I need to do?
You don’t need to take any action. The new properties are available for you to consume if you so choose.
If you have feedback or questions related to this announcement, visit our community forum where we collect and manage customer product feedback. For general assistance with your Zendesk products, contact Zendesk Customer Support.
0 comments