Trigger Step-Up authentication with Auth0 Lock

kim · May 17, 2019, 3:09am

I want to add Step-Up authentication to my SPA using Auth0 Lock. I added a custom rule to trigger MFA when sending acr_values, as described here.

Unfortunately the embedded lock widget always shows “something went wrong when attempting to log in”.
The corresponding error in the Auth0 logs says “Multifactor authentication required”

When doing the same flow via redirect requests (without Auth0 Lock) it works exactly as expected, i.e. Auth0 asks for my MFA code only, then redirects back to my app. Is there a way to achieve the same using the embedded Auth0 Lock widget?

(Please note that I want to deliberately ask for the user’s MFA code and only the code, even if they already authenticated before – no silent authentication)

konrad.sopala · September 3, 2019, 8:16am

Hey there!

Sorry for such huge delay in response! We’re doing our best in providing you with best developer support experience out there, but sometimes our bandwidth is not enough comparing to the number of incoming questions.

Wanted to reach out to know if you still require further assistance?

Topic		Replies	Views
Scopes for Step-Up authentication Help mfa , scopes , authentication , single-page-applicat	2	4440	March 2, 2018
How to implement MFA step-up when using Auth0.js SDK for authentication Help mfa , auth0js , react , mfa-sms	7	7538	September 4, 2020
How to enforce multifactor authentication for custom use case? Help sms	2	3170	May 19, 2020
Step up authentication not working Help mfa , push-via-auth0-guardian-factor	2	2260	December 21, 2022
Step-up authentication redirecting to login page Help mfa	2	2155	November 4, 2022

Trigger Step-Up authentication with Auth0 Lock

Related topics