Just checking my understanding here. I found a post somewhere (can’t find it now) which said that invite emails were for user-pass accounts only, and weren’t compatible with social accounts. That is, you can’t send an invite email and force someone to join via Google etc.
If so, does that mean that, with social logins, there is no joining? The join/login process is flattened to one and the same thing, and anyone with a social account can do so. Right? And if so, does that mean it’s up to me, presumably via an action, to allow or reject the login attempt based on some sort of lookup (e.g. a deny/allow list, or a request to an endpoint on my server which stores the emails of valid users)?
Social users can sign up for your app whether they receive an invitation or not.
Social users are “created” in Auth0 by logging in. So you can send the users a link that will redirect them to the login page. Then, they will log in with their social credentials, be redirected back to the app, and have an account.
Allowing or rejecting that process is up to you! Here are some examples that you might find useful:
Built-in Integrations in the Auth0 Dashboard under Actions > Library > Create Action > Use A Marketplace Integration. Search for the names “Country-based Access” and “Domain Based Registration.”
Please let me know if you have any additional questions!
Thanks, @marybeth.hunter, that’s really helpful. Just an FYI: two of the three links you gave (the ones to actions) send me to the dashboard; Auth0 doesn’t seem to deep-link straight to the actions you tried to link to.
Thanks for letting me know about the links. I have edited my initial response to prevent any future confusion. To view those Actions, please navigate to Actions > Library > Create Action > Use A Marketplace Integration and search for the names “Country-based Access” and “Domain Based Registration.”
):