Got it. Thank you very much for your help! I’ll test when I upgrade Strapi.
await this.edit({ id: user.id }, { confirmationToken });
That part is not working, it returns: error TypeError: this.edit is not a function
Have you found a solution for this ?
I’m losing clients because many users double click on the confirmation link (even when I indicate to click once) it then returns the “invalid.token” error and so they never get directed to the next step of the user registration (choosing plan) 
@algorhythm Just subpress double clicks and set button to disabled after first click. Then this shouldn’t happen.
THIS is what has me mystified… how does the front end know what the user id is after confirmation redirect? Surely a JWT is neccessary as a parameter on the redirect url?
ok so I think I understand now, is the user expected to log in with password again?
ah… user has to login again with password , right?
How long this confirmation URL is valid?