Hi,
We had a recent issue where users got into an infinite redirect loop when the “Remember this device for 30 days” option was selected for MFA, making them unable to log in.
Reproduction flow: Login attempt → MFA request → User selects Remember device option → Successful Login.
Logout, then on the next login: Login attempt → Infinite redirect loop, failure to log in
We enabled MFA in a Post Login action. We solved the issue by setting the allowRememberBrowser option to false.
Is it a new bug in auth0? This feature used to work without problems.