We have a tenant with Passwordless (Email) and Enterprise (SAML) connections enabled. For the Passwordless connection, the “Disable Signups” flag is turned off.
When attempting to log in to this tenant using the Universal Login page, we noticed that although there is a sign-up link at the bottom, the login and sign-up pages appear to be identical. Both pages only display an email field. It seems registered users can log in from either page, and non-registered users can sign up from either page as well.
Is it correct to assume that the login and sign-up pages function in the same way when a tenant only enables Passwordless and Enterprise connections?
First, I apologize for the delayed response, second, yes, your assumption is correct. When a tenant is configured with only Passwordless (Email) and Enterprise (SAML) connections using the New Universal Login, the login and sign-up pages will function identically.
This behavior occurs for two main reasons:
Identifier First Authentication: The system relies on Home Realm Discovery. It must first capture the user’s email address to determine if they should be routed to an external Enterprise IdP (SAML) or remain on Auth0 for the Passwordless flow.
Passwordless Mechanics: Unlike a database connection that requires a unique password for signup, the Passwordless email flow is identical for both registration and login.
While the pages appear identical, the screen_hint=signup parameter can still be used to trigger specific “Sign Up” prompts; however, the functional input field remains the same.