Overview
When making a call to /dbconnections/signup, the following error is received:
“Suspicious request requires verification”
Applies To
- Bot Detection
- Attack Protection
- Suspicious Request
Cause
This error originates from the Bot Detection feature.
- The user signup process requires the completion of a CAPTCHA. The signup fails because the
/dbconnections/signupAPI endpoint does not support the completion of the CAPTCHA. - As mentioned in Flow Limitations, CAPTCHA it is not supported with the Resource Owner Password Grant (ROPG).
Solution
Turn off CAPTCHA in the tenant.
- Navigate to the Auth0 Tenant
- Select Security > Attack protection in the left navigation menu
- Select Bot detection
- Set the captcha settings to Never:
Alternatively, the user can sign up on the login page directly.