Hi, I am looking into the possibility of using Auth0 for authentication/authorisation on a web app before subscribing. I have created a custom html/css UI outside of Auth0, and am now using Auth0.js and the authentication API to configure the login page. We plan on using the same parent domain across pages but I just wanted to clarify if this was an embedded login, and therefore less secure? This post suggests it is but having our login code with the rest of our webapp code is important to us and this method is the only way I have found of achieving this. It is even suggested here which I find surprising if this is indeed less secure?
Are there alternatives? Also, would having the html/css code in the Custom Login Form universal login SDK be an embedded login (this would not enable having all code in our own repo but I’m just curious). Thanks