I'm digging into the hypermedia-api and hoping to implement SSO on our store in the next few months. In building our customer database to sync with foxy's, I have found duplicate customer records, where a customer has 2 records in foxy's database, with identical emails and names but different password hashes. The date_created and last_login_date are both null for both records.
I found this in the documentation:
Regardless the method of creation, the single most important piece of a customer record is the email address used. The email address can be considered the unique key for the customer; there cannot be two different (non-guest) customer records with the same email address in a single store.
Is the above not accurate or is this a bug? How common is this bug if so? Please advise.