Auth0

About

Authentication Flow

  • An app initiates an authentication request to Auth0.
  • Auth0 routes the request to an Identity Provider through a configured connection.
  • The user authenticates successfully.
  • The ID Token and/or Access Token is passed through the Rules pipeline,
  • then sent to the app

Login

Every time a user is logged in you get access both:

  • to the access token
  • and the ID token.

The user's profile information is extracted from the ID token. Typically, the token is used to call your backend application and the profile information is used to display their name and profile picture.

Universal login

Auth0 will show a login page

You can use Auth0's Custom Domains in order to persist the same domain across the login page and the app.

Whenever your app triggers an authentication request, the user will be redirected to the login page in order to authenticate. The /authorize endpoint trigger the Universal Login.

Navigate to the login page:

https://YOUR_DOMAIN/authorize?
  response_type=code|token&
  client_id=YOUR_CLIENT_ID&
  connection=CONNECTION&
  redirect_uri=https://YOUR_APP/callback&
  state=STATE

where:

Metadata

Logging Settings

The settings available here are:

  • Logo (recommended size: 150 x 150 pixels)
  • Primary Color
  • Background Color

Ie:

  • branding.logo_url
  • branding.colors.primary
  • branding.colors.page_background

Application

  • application.id
  • application.name
  • application.logo_url
  • application.metadata

Tenant

  • tenant.friendly_name
  • tenant.support_email
  • tenant.support_url

Rules

Rules are JavaScript functions that execute when a user authenticates to your application or a token is refreshed.

Login page

You can deploy your custom login page from an external repository like GitHub, Bitbucket, GitLab,

Pricing


Powered by ComboStrap