Hi,
What do I want to achieve?
I want to create review apps, so on each PR an application is spun up for our QA people to test the new version before we merge. These are deployed with a dedicated PR, linked to that deployment. To make this possible fully automated, I would need to add a wildcard to the callback URLs for the deployments domain.
What’s the problem?
When I enter a domain like the following, I get a validation error:
Example Domain: https://review-frontend-pr*.sub.example.com (the * is a placeholder for the PR number). Even using *.sub.example.com this does not work.
The Error: One or more callback URLs are invalid. (and it highlights the above Domain, so there is not a chance it means another one)
This error is pretty unexpected, because the Documentation says explicitly, that this should be possible (note: we try to use this with a dev env, so no prod env is involved):
Allowed Callback URLs: Set of URLs to which Auth0 is allowed to redirect users after they authenticate. You can specify multiple valid URLs by comma-separating them (typically, to handle different environments like QA or testing). For production environments, verify that the URLs do not point to localhost. You can use the following placeholders in this field:
- Wildcards: Use
*for subdomains (*.google.com) Not recommended for production environments.
Source: Application Settings - Auth0 Docs
Any help or hint is very appreciated!
Kind Regards,
Nico