This weekend, we found a random user registration in our Auth0 users list. The interesting thing is that we use the Wordpress Auth0 plug-in and user registration is disabled in Wordpress. How can this happen?
In addition to disabling user sign-ups in Wordpress, have you disabled signups in the database connection?
Ah, we hadn’t no. How would a user be able to get through to Auth0 though with the WP registration form blocked?
It doesn’t look like you have an Application Login URI configured, so it seems like they would have had to initiate the login from your site somehow. Is there a way to initiate login on the site somewhere?
This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.