Users Received "self signed certificate" Error When Trying to Log in or Sign up

Problem Statement:

With Custom Database connection, when trying to log in or create a new user on Auth0, it failed with the below error:

{
"error": "invalid_grant",
"error_description": "self signed certificate"
}

Solution:

The issue is due to a library update that impacts customers’ webtask scripts that use Postgres and connect to databases with invalid or unauthorized certificates. We have identified two workarounds:

  • Pass rejectUnauthorized: false to your Postgres client
  • Set process.env.NODE_TLS_REJECT_UNAUTHORIZED = ‘0’; in your script to not reject unauthorized certificates

We will update this FAQ once more details are available.