Hey there @prani128 ,
With the /login request, a state parameter is issued to prevent CSRF attacks which is valid for a limited time.
https://subdomain.eu.auth0.com/login?state=xxxxxxxxxxxx
There is a doc on how to manipulate this value - State parameter lifetime
More info here - Prevent Attacks and Redirect Users with OAuth 2.0 State Parameters
Please let me know if you have any questions!