Use Case:
We have customers who want to store their data in US or Australia regions. We want them to be able to login from the same login page. Also, some customers use SAML/Social/Enterprise connection and we don’t want to show their login buttons on the login page.
We’re not sure that they will always have some fixed domain for their users. So we don’t want to depend on Home Realm Discovery.
Our Current Implementation:
- We have two tenants, Tenant 1 (US region) and Tenant 2 (Australia region).
- Our web app does not contain any sub-domains for US and Australia regions. For example, the URL is https://{domain}.com
- There is our own login page in our web app where user enters their email. It calls our own API which returns the Auth0 tenant and connection information for this user.
- User is then redirected to Auth0’s Universal login page with pre-added “connection” and “login_hint” params, to open user’s connection automatically (database or SAML/Social/Enterprise connections). This overcomes the limitation of Auth0 that we can’t do Home Realm discovery like automatic connection detection without specifying a domain.
Question
- Is this the correct way to do this?
- Can Auth0 provide a single login page for multiple regions. You can take a look at Zoho login page (Zoho Accounts).
- When you enter a US email, it keeps the domain as https://accounts.zoho.com.
- When you enter Australia email, it changes the domain to (https://accounts.zoho.com.au)
So, there is a single login page for multiple regions.