Auth0 Integration with Singpass

robertino.calcaterra · November 5, 2021, 4:53pm

Learn how to enable Singpass login with QR code in Auth0 Universal Login.
Read more…

Brought to you by @amin

robertino.calcaterra · November 5, 2021, 7:13pm

Hey everyone! Let us know if you have any questions in the comments below!

robertino.calcaterra · December 5, 2021, 4:00pm

This topic was automatically closed after 29 days. New replies are no longer allowed.

konrad.sopala · March 7, 2022, 2:40pm

pawanvir.impinge · June 2, 2022, 6:22am

@robertino.calcaterra Hello
can you please let me know in details what url need to be added in Authorization Url and Token url during create custom extension under social connection. See screenshot Screenshot by Lightshot

amin · June 3, 2022, 2:48am

hi @pawanvir.impinge ,

webtask domain depend on your tenant region and extensibility version. If follows a pattern like https://YOUR_TENANT.regionNodeVersion.webtask.io/

you can find sample of full domain name per region here: Delegated Administration Extension v3

Remaining of URL is a follows:

authorization endpoint: /auth0-singpass-extension/authorize
token endpoint: /auth0-singpass-extension/token

hope that helps,
Amin

alice.zhang · June 15, 2022, 8:26am

hello @robertino.calcaterra and @amin thank you for the detailed post! can i check if the relying party on the create extension page refers to Singpass? ive tried to use the JWKS endpoint and KID from both singpass and my own domain and they both lead me to the error below.

Accessing the following two URL following the format below shows that error as well.

Error:

amin · June 18, 2022, 2:48am

hi @alice.zhang ,

@Vikas_Jayaram pushed a new change to extension today (PR1). Would you please check if the dependency issue is resolved?

Regards,
Amin

alice.zhang · June 28, 2022, 7:56am

Hello @amin ,

Yep the update resolved my previous issue. Thanks a lot.

Can I check if you’ve encountered this error before, or is this bug cause by Singpass?

Singpass cannot generate QR code

amin · June 28, 2022, 8:28am

@alice.zhang good to know the extension issue is resolved. I’m not across the error message. can you supply further information? does it happen all the time? can you send a HAR file?

alice.zhang · June 29, 2022, 3:59am

Hi @amin
Yes this happens every time I attempt to generate a QR to login.

I was reading through their documentation and am wondering if I needed to whitelist Singpass domain or integrate relevant CSP headers onto the Universal Login HTML? Or does singpass need to whitelist my webapp’s domain instead?

Here’s the HAR file as i attempt to login:
ngs-development.au.auth0.com.har (1.9 MB)

amin · June 29, 2022, 11:44pm

@alice.zhang you’re right. this is because you need to use Auth0 Custom Domain that’s registered in Singpass and not the Auth0 canonical domain.