Forbidden after redirecting to /continue


In my rule, I redirect the user to my website for a custom MFA, and from there, when I want to continue the normal flow and I redirect the user with:
window.location = “my_auth0_domain”/continue?state=“the_state” I get a Forbidden.

When I look at the logs, the user is well created…

I simplified the rule at the maximum:

function (user, context, callback) {
    if (context.request.query.verified) {
          return callback(null, user, context);
    } else {

        context.redirect = {
            url: ``
    return callback(null, user, context);

Thank you.

Hey there!

Sorry for such delay in response! We’re doing our best in providing the best developer support experience out there, but sometimes the number of incoming questions is just too big for our bandwidth. Sorry for such inconvenience!

Do you still require further assistance from us?