Hi @kim.maida - I think a blog post highlighting basic configuration but providing context would be useful.
There might be something out there already but between the 1) quick-start tutorials, 2) documents, 3) community, and 4) blog posts (listed in the order that I consumed them) there is a lot of information scattered around, oh and searching in 3 does not find results in 2 etc. (I resorted to googling).
Yep - one size fits all is not really a product you sell… too many technologies and use cases.
As far as use cases go, mine might be unique - I have been developing in MS-Office VBA and (as of last night) I have a pretty cool Auth0 login form embedded in a VBA userform and I basically scrape my embedded browser to control flow, it’s a means to an end and about as secure as you can get (in VBA).
Next step will be moving everything to a native app / Electron / React or something else. Then comes the IOS and Android apps…
Arriving here, the most important thing for me was to get authentication. Not as easy as expected but Auth0 has opened up a new world of possibilities to me - which is great, exciting and all, but I can’t afford to get distracted by all that just yet… for now I need the most basic solution from which I can build on.
But nothing is basic… working with an embedded IE Browser you can imagine things get frustrating when Arrow Functions are not supported and IE chokes on some keywords that it (in it’s sole discretion deemed to be reserved) - that’s when <meta http-equiv="X-UA-Compatible" content="IE=edge">
became useful to know (it’s hard to love IE / Edge). Worth considering for worked examples…
A blog post (or getting started document) that takes beginners from start to finish using plain JS for a SPA pulling these scattered resources together seems like a pretty good option. The information might be out there but is hard to find. Some points to cover:
- Setting up rules seems straight forward to me, now… but a few days ago I was tearing my hair out.
- Same for
logout?returnTo
- setting up the Allowed Callback URLs in Tenant settings (not Dash > Applications) also responsible for my receding hairline. - Requiring email verification is still vexing me - and this seems to be a common pain point that remains un(satisfactorily)documented. I have a rule but #clunky.
Hope it helps