User redirected to MFA unless user checks remember device (with custom domains and rotating refresh tokens)

koralarts · May 10, 2022, 6:06pm

We recently switched from localstorage to memory as the cacheLocation. We also added custom domains and rotating refresh tokens.

When a user logs in and goes through MFA two things can happen depending on their actions:

If the user checks “Remember this device for 30 days.”, the user is logged in normally.
If the user DOES NOT check the “Remember this device for 30 days.”, the user is logged in normally but then redirect back to the MFA page after a few seconds.

createAuth0Client({
   ...other properties
   code_challenge: codeChallenge,
   code_challenge_method: "S256",
   useRefreshTokens: true
})

Update 1:

getTokenSilently fails with the error Error: Multifactor authentication required after passing isAuthenticated and handleRedirectCallback calls.

Topic		Replies	Views
User Being Challenged with MFA Despite Checking "Remember this device for 30 days" Option Knowledge Articles mfa-policy , remember-device , allow-remember-browser	1	2720	December 7, 2022
MFA - Is it possible to turn off "Remember Device for 30 days"? Help	3	3629	November 23, 2022
MFA with OTP does not work properly when unchecking "Remember this device for 30 days" Help	10	4339	May 23, 2023
Issue with MFA "Remember this device for 30 days" Option and Silent Auth Failures Help mfa , one-time-password-otp-factor	0	516	March 5, 2024
Controlling MFA Expiration Time Help auth0 , mfa	2	2657	September 23, 2022

User redirected to MFA unless user checks remember device (with custom domains and rotating refresh tokens)

Related Topics