Hello,
Is it possible to setup auth0 such that it prompts a user for email and password on every login.
I tried changing the token life duration but every time I go to the login page it goes directly to the 2FA page. I would like auth0 to first prompt for email and password and then to go to 2FA.
How can I set this up?
Hi @markos,
Welcome to the Auth0 Community!
Yes, it is possible. To accomplish this, you have the option of including the prompt=login parameter in the authorize request to force login.
For example:
https://YOUR_DOMAIN/authorize?
response_type=code&
client_id=YOUR_CLIENT_ID&
redirect_uri=https://YOUR_APP/callback&
scope=SCOPE&
audience=API_AUDIENCE&
state=STATE&
prompt=login
Once the parameter is included, your users will always have to provide a username and password combination to log in.
Please let me know if there’s anything else I can do to help.
Thank you.
Hello @rueben.tiow,
Thank you very much for the quick reply.
We have an external company using our auth0 tenants to authorize our users on their systems. The only way is to tell them to use prompt=login in their requests? Is there another way to do this?
Much appreciated
Hi @markos,
Thank you for your response and clarification.
Unfortunately, there isn’t an alternative way to force login in this case.
It may be possible to configure the token expiration settings so that the user can only stay authenticated for a short set amount of time before requiring to log in again.
If this is applicable, please take a look at the Update Access Token Lifetime doc on how to set the token expiration settings.
Doing so, should not prompt the user to 2FA since their session has expired and must re-input their credentials.
Please let me know if this works for you.
Thank you.
This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.