We’re using the universal login (classic w/ custom html) for our application, meaning we redirect the user from our login route to Auth0 authorize with the clientId/audience etc as query params. On the login page we strip the query param to have a nicer looking url.
The issue is, a user could just copy the url and use it later. If they just use the domain (custom or not), they get redirected to the Auth0 homepage.
Hi @lukasObo, if the user enters the custom domain only, it should redirect to the parent domain and not Auth0. Are you seeing a different behavior? For example auth.example.com should redirect to example.com. This used to redirect to auth0.com some time back, but not anymore.
What does the URL looks like after stripping the parameters? Generally the solution to users bookmarking the login page is specifying a ‘default login URL’: Configure Default Login Routes
@eltimn We have this in our backlog to make the redirection configurable, but at the moment only parent domain is supported. Could you add your use case to Auth0: Secure access for everyone. But not just anyone. ? This will help us prioritize it sooner.