How to handle error messages from Rules

Hello! I am trying to use the Hosted Page with /authorize URL as entry point (not using Auth0.js on client). I also use some Auth0 rules. But any time I get an error in those rules and get redirected to the Auth0 default error page, somehow the error message is appended to the redirect_url in a way that obfuscates the error. Is this expected behaviour or am I doing something wrong? For example, I get this error message:

invalid_request: The redirect_uri parameter is not valid: "https://<redacted>/auth/callback?next=https%3A%2F%2F<redacted>%2Fauth%2Fcallback%3Ferror%3Daccess_denied%26error_description%3Dno email or no verification_code provided" If url looks fine, check that you are not including non printable chars

I redacted my domain, but as you can see, the callback has been mashed together with the error message. How can I get the error message to display directly here?

Hi @ripperdoc

That redirect_uri parameter doesn’t look quite right.

It looks like it has extra query parameters passed to it which would cause the redirect_uri parameter to fail validation as it most likely isn’t configured in the Auth0 management dashboard.

If you’re able to upload a .HAR file (with sensitive information obfuscated) then that might provide more insight.

Hope this helps!