Notify user that his account has been disabled.
Usually account will be disabled because of too many failed authentication attempts or explicitly by the admin.
Account that has been disabled.
Explanatory message containing reason why account has been disabled.
Notify admin that user account has been disabled.
Usually account will be disabled because of too many failed authentication attempts or explicitly by the admin.
Email of the admin.
Account that has been disabled.
Explanatory message containing reason why account has been disabled.
Notify user about failure of the multi factor authentication.
In case attacker guesses password, it will fail at mfa.
User will be notified about this, and in case it wasn't him that failed mfa, he needs to be suggested to change password.
Account on which failed mfa was detected.
Authentication context.
Notify user that password of his account has been changed.
In case attacker guesses his password or steals his session, user will receive this notification.
User needs to be suggested to change password/recover account/enable mfa in case he doesn't recognize this password change attempt.
Account on which password has been changed.
Change password context.
Send account activation token to user after he registered his account.
Account that needs to be activated.
Activate account token.
Send forgot password token to user after he started account recovery procedure.
Account that needs to be recovered.
Forgot password token.
Whether token was encrypted with AccountModel.pubKey.
Sender used in order to notify client via email about different events happened in the authentication process and account management.