Hi, I am working on adding Auth0 with social authentication in our app. We don’t all users to signup in the app. The signup process is handled manually from back office. I was able to disable signup option in the Database connection. But Since I have enabled Login with Google, Microsoft and Apple. People are able to login. Would it be possible to deny someone’s login if they haven’t been added by the back office and don’t already exist in the Auth0’s Database.
1 Like
Hi @d1612k , welcome to the Auth0 community!
It’s not possible to completely disallow signups from an enabled social connection. This is because it is only when the user returns back from Authenticating with the social provider that auth0 knows who this user is. The blocking of the user is the only solution offered at the moment.
We have further guidance on this FAQ post,Remove social sign ups from universal login but still allow logins. please take a look for more information.
Using Actions and Account linking, you could look to implement a custom action flow that checks whether the users email already exists and if so link the accounts or block the account if a matching email does not exist.
I recommend having a look at the info about account linking in more detail if that is the path you wish to take.
Hope this helps!
1 Like