I have existing clients that are using lock’s that are not associated to OIDC. Now having to conform to OIDC when using a lock on my own hosted server I receive the error:
“access_denied: Password login is disabled for clients using externally hosted login pages with oidc_conformant flag set.”.
However, Having to move to using Auth0 hosted login page (which I don’t mind) there is no clear instruction on using this workflow therefore my only assumption is to activate custom login for Hosted page, click on Preview to then be provided the URL to redirect users? When redirecting users to this URL they are presented with a lock hosted by Auth0 however then redirect to auth0 hosted callback showing a misconfiguration and additional details again show:
access_denied: Password login is disabled for clients using externally hosted login pages with oidc_conformant flag set.
So what am I missing? I am using PHP and happy to either redirect users to Auth0 hosted or to host my own lock.