Customization of error codes for login flow

pastdevr · January 16, 2021, 2:48pm

Hi,
the use case I need to implement requires the way to distinguish between login with a correct email and wrong password and login with both credentials wrong (email/password). I need to provide different error messages for login flows. As far as I know, currently, Auth0 returns single error code for both cases invalid_user_password which can be customized for example when using Auth0 Lock widget.

Is it possible to differentiate the cases I mentioned to have better customization of error messages?
The login action happens on the Universal Login page.

sidharth.chaudhary · January 17, 2021, 10:37pm

Hey @pastdevr, Welcome to the Auth0 Community.

Yes, we only support customization of invalid_user_password, which covers both scenarios:

To distinguish between login with a correct email and wrong password and login with both credentials wrong (email/password) poses risks of revealing the existing email in the database in my opinion. Hence the generic error.

Regards,
Sid

Topic		Replies	Views
SignIn page is not UX perfect Help	2	2284	March 5, 2022
Corresponding error messages for errors Help classic-universal-login-experience , login-experience	5	1075	February 16, 2023
Customize error for wrong mobile number and otp in lock passwordless universal Login Help auth0	4	3126	March 5, 2021
How to add custom error message for password reset UI (Universal Login) Help lock , auth0 , login	3	4518	October 15, 2021
Custom error messages Universal Login PHP SDK Help auth0 , error , auth0-php , new-universal-login	6	3149	December 26, 2020

Customization of error codes for login flow

Related Topics