Auth0 Home Blog Docs

Changed Password via Dashboard and/or Password Reset and cannot login now

I have reset password via the Auth0 universal login and also tried resetting the password via the portal. Both times it is showing a success in the logs.

However, when I try to login, I am getting the following error:

“error”: {
“message”: “Access denied.”,
“oauthError”: “unauthorized”,
“type”: “oauth-authorization”
},

I have a .har file of the details if anyone can help.

Hi Mellissa, and welcome to the community! :tada:

Please, can you send me the HAR file in a private message?

Hi Melissa,

Thanks for sending me that HAR file.

I think most likely this is being caused by your rule. Could you please try disabling the rule and logging in again?

I disabled the rule and it allowed me to login. Is there a way to make a rule only applicable to a single application within a tenancy?

Thanks,
Melissa

The best way to make a rule only apply to a specific application is to use a context.clientID based if statement. You can see an example here: https://auth0.com/docs/rules/references/samples#deny-access-based-on-a-condition

function (user, context, callback) {
  if (context.clientID === "BANNED_CLIENT_ID") {
    //Your rule code here
  }

  callback(null, user, context);
}
1 Like

Thanks a lot Matt for sharing that knowledge here!

Thank you for this.

I have it successfully resetting now, but now it will not redirect back to the original url after successful reset.

Also, is there a way to pass the client id for a specific app in that tenant without hard coding the clientId into the if clause?

Thanks!