Problem statement
On logins with the Google Social connection, the Sign In with Google page has a message:
Choose an account to continue to [auth0.com](http://auth0.com/)
How can the domain be changed from “auth0.com” to an application’s domain?
Solution
While still in the testing process, if the app registered with Google is not verified, the redirect domain shows the real place the token will be sent. This was a security measure put in place by Google to protect users from a phishing attack that attempted to abuse the OAuth authorization infrastructure. If a tenant’s canonical domain is configured as a callback in Google, “auth0.com” will appear there unless the App is verified.
-
To show an application domain without being verified, configure a Custom Domain in the Auth0 tenant.
-
Change the
Authorized redirect URIsin Google Cloud Console to use that domain, e.g. yourdomain.com is available for purchase - Sedo.com.
In this case, the label should now say “yourdomain.com” instead of “auth0.com”.