Starts a self-serve email update for a Member specified by their organization_id and member_id. To perform a self-serve update, members must be active and have an active, verified email address.
The new email address must meet the following requirements:
- Must not be in use by another member (retired emails count as used until they are unlinked)
- Must not be updating for another member (i.e. two members cannot attempt to update to the same email at once)
The member will receive an Email Magic Link that expires in 5 minutes. If they do not verify their new email address in that timeframe, the email will be freed up for other members to use.
RBAC Enforced API
When a Member Session is passed in the Authorization headers, Stytch will enforce that the Member has permission to take the update.info.email Action on the stytch.member or stytch.self (depending on the target MemberID) Resource prior to honoring the request.
To learn more, see our RBAC guide.