Add additional PAT expiration notification job

Problem to solve

In 12.6 we added a notification for users about their PAT expiring within 7 days of the expiration date set by instance administrators.

This provides the user with a heads up, but there's no additional warning or recourse aside from the disruptive action of their PAT being forcefully expired. There's no alternative workflow here, leaving administrators to determine an all-or-nothing approach to PAT credential management.

Intended users

• Sidney (Systems Administrator)
• Cameron (Compliance Manager)

Further details

Proposal

Add an additional email notification for users who's PAT has expired:

Hi first_name,

One or more of your personal access tokens has expired.

You can create a new one or check them at Personal Access Tokens

Feature flag

Name: expired_pat_email_notification

Disabled by default.

Permissions and Security

Documentation

Availability & Testing

What does success look like, and how can we measure that?

What is the type of buyer?

Is this a cross-stage feature?

Links / references