Hi everyone,
I’ve recently implemented custom domains across several of my Auth0 tenants and ran into a usability issue that I think could be improved. Currently, when you configure a custom domain, Auth0 doesn’t automatically replace the references from tenant.auth0.com to your custom domain. This means you have to manually update each reference yourself, which can be error-prone, especially with WebAuthn (fingerprint authentication) that heavily relies on domain consistency.
Specifically, the issue arises because WebAuthn binds fingerprints to the domain used, causing authentication failures when there is a mismatch between the default Auth0 domain and the custom domain.
Wouldn’t it make sense for Auth0 to automatically handle this by defaulting to something like:
const domain = customDomain || auth0Domain;
This way, if a custom domain is set up, the system would seamlessly use it across the board, enhancing usability and reducing potential errors.
Auth0 support suggested submitting this as product feedback, so I’m curious—has anyone else encountered this issue or found efficient ways to handle it?
I’d love to hear your thoughts or suggestions on this!
Thanks!