Feature: Enhanced Logging for Auth0 Authentication State Errors
Description: We need more detailed logging capabilities for authentication failures in the Auth0 platform, specifically for state-related errors. Currently, when users encounter these errors during login, we only see “Pre-login risk assessment” entries in the dashboard without detailed error information.
State errors occur when the state parameter from the original request doesn’t match the state in the response, or when state expires before hitting the “/u/login” endpoint. Only by communicating with Auth0, we were able to see the logs and check the pairs of requests to the /u/login endpoint (one with state error, one with 302 status) repeating until rate limits are reached.
We request:
- Comprehensive error logs capturing the full details of authentication failures
- Direct access to these error logs from the Auth0 dashboard
- Option to receive webhook notifications for critical authentication errors
Use-case: We’ve built a web application with Auth0 authentication. When some users experience login failures, they’re redirected back to our site with an “iss” parameter, indicating an Auth0 error. Without detailed error logs, we cannot efficiently troubleshoot these issues, leading to extended resolution times and poor user experience. Enhanced logging would allow us to quickly identify error patterns, resolve authentication problems, and improve our overall system reliability.