Hello, I’m new to auth management and auth0 and have a question regarding how to manage user logins for a simple web app, using multiple different approaches.
My app will need to have google/facebook login, as well as the standard username/password via auth0. As I understand things, a user could sign up/login with username & password on one occasion, and then with google on another occasion. In the case of the google login, I think this will be creating a new user on auth0.
I do not want to make multiple accounts for the same user, at least not in my application. I thought I might map user ids/emails from my app’s db to the sub field of the JWT once they log in, and then a user’s email would be associated to some number of sub fields. That way they would technically be different accounts for auth0 but my app would treat them as the same user. However I feel like i might just be missing some details about this and don’t want to make something insecure.
Could I have some advice/pointers on how this should be handled?
Thanks