We recently gained access to our users’ email addresses via this endpoint. We’ve got it all up and running… for the most part. We’ve found one issue - if a user has already authenticated the app with the old permissions, and for some reason need to reauthenticate the app (in this case, when a user has deleted their account on our platform and signs up for a new one), they’re shown on the auth screen that our platform will have access to their email address - but we don’t! On making a call to verify_credentials with include_email set, we don’t receive their email address. This is a bit sad.