Add audit event and logs for SCIM provisioned users from unverified user auto-deletion.
In order to reduce the number of support requests where users may inadvertently create an account that they cannot verify (e.g email typo) we introduced the auto deletion of unverified users Automatically delete unverified unconfirmed use... (#352514 - closed). Currently set at 3 days, it makes sense for most scenarios except SCIM provisioned users where organizations often provision them ahead of time (few days to few weeks) such as when onboarding new employees.
Based on our discussion, it was suggested to exclude SCIM provisioned. accounts from this deletion. To identify such users we can use the provisioned_by
attribute or add a new field.
Possible workaround
In the meantime, we recommend SaaS customers to verify their domain, which bypasses confirmation.
Proposal
Implement a 30 day exemption from auto-deletion for SCIM provisioned users. Based on the following discussion, we will add an audit event and logs to indicate when a SCIM provisioned users is deleted via the unverified accounts worker. This is applicable to users not currently adopting enterprise users.