Was this confirmed as intentional? If so, I think this can likely be moved out of Bug. (Also a little curious as to the rationale if someone is willing to share )
If it is intentional then there seems to be at least two UX/Feature issues here:
-
Smoothing out the ux of this ‘dead end’ re-verify situation a user can find themselves in
-
Providing a way to periodically force an email revalidation where the users can’t simply switch to a non-authorised email and carry on accessing the site