Changed Password via Dashboard and/or Password Reset and cannot login now

I have reset password via the Auth0 universal login and also tried resetting the password via the portal. Both times it is showing a success in the logs.

However, when I try to login, I am getting the following error:

“error”: {
“message”: “Access denied.”,
“oauthError”: “unauthorized”,
“type”: “oauth-authorization”
},

I have a .har file of the details if anyone can help.

Hi Mellissa, and welcome to the community! :tada:

Please, can you send me the HAR file in a private message?

Hi Melissa,

Thanks for sending me that HAR file.

I think most likely this is being caused by your rule. Could you please try disabling the rule and logging in again?

I disabled the rule and it allowed me to login. Is there a way to make a rule only applicable to a single application within a tenancy?

Thanks,
Melissa

The best way to make a rule only apply to a specific application is to use a context.clientID based if statement. You can see an example here: https://auth0.com/docs/rules/references/samples#deny-access-based-on-a-condition

function (user, context, callback) {
  if (context.clientID === "BANNED_CLIENT_ID") {
    //Your rule code here
  }

  callback(null, user, context);
}
1 Like

Thanks a lot Matt for sharing that knowledge here!

Thank you for this.

I have it successfully resetting now, but now it will not redirect back to the original url after successful reset.

Also, is there a way to pass the client id for a specific app in that tenant without hard coding the clientId into the if clause?

Thanks!

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.