Auth0's new Universal Login experience — including reimagined login flows, with a fresh UX design, and lightweight pages — is now generally available. Here is everything you need to know about this release.
First, What is Universal Login?
Universal Login benefits include:
- Simplified user experience
- Streamlined app integration
- Improved administration
- Increased authentication security, especially with 3rd party integrations and mobile apps
Why Are We Updating Universal Login?
The new Universal Login experience allows us to provide a smoother login experience for you and your users while simplifying the development of future capabilities. The classic Universal Login experience based on Lock remains available for customers who wish to use it.
"The new Universal Login experience allows us to provide a smoother login experience for you and your users."
What is New About the New Experience?
Here are the key improvements and additional capabilities available with the new Universal Login. We will be adding more over time:
Lightweight login pages
Redesigned flows for login, MFA, signup, and more
The fresh design for Universal Login pages and flows, combined with easy customization capabilities results in a unified, modern look and feel for your login pages. New flows can also be enabled in conjunction with existing classic Universal Login implementations. To see an interactive demonstration of the new flows visit flows.auth0.com.
Multiple authenticator support for multi-factor authentication
Customers can now enable support for multiple MFA authenticators. End users can now enable multiple MFA factors and then choose which one to use during the login process.
All of the flows are fully localized in English, Spanish, German, French, Portuguese, Dutch, Norwegian, Swedish, Danish, Finnish, Chinese, Russian, Italian, and Japanese. Language can be determined via browser settings, a parameter in the /authorize endpoint, or tenant settings.
Email as an MFA factor
The ability to use a confirmed email address as a method for multi-factor authentication.
Improved consent flow
The consent flow now offers language localization, more branding customization options, and more descriptive text.
Device Flow is an OAuth 2.0 authorization flow designed for devices that either don’t have access to a browser or have limited input capabilities. Device Flow enables end-users to authorize such devices to access APIs (protected resources) provided the devices have an internet connection.
Successful password reset and email verification redirect
Now when a user successfully completes a password reset or verifies their email address, they will be redirected to the default tenant or application login URL, allowing them to quickly begin the login flow.
What features are on the Universal Login Roadmap?
We have a number of improvements in the works. We can share some of our future capabilities, but not all. Here are just a few things that are currently planned:
The new Universal Login text can be customized for your needs.
Even further customization and enhancements for the look and feel for the Universal Login pages to generate an exceptional login experience.
Home Realm Discovery
Specifically for customers with an enterprise identity provider. Home Realm Discovery will allow users to enter their email in the login screen, which will then automatically detect the connection they should be authenticated with.
What Are the Limitations to the New Universal Login Experience?
There are currently a few limitations to the new Universal Login experience. Visit docs for an up-to-date list of the limitations.
How Do I Get Started?
To try the New Universal Login experience out, sign up for Auth0 for free and click on Universal Login in the management dashboard. For a quick, interactive demonstration of the new login flows, visit flows.auth0.com.
Auth0, the identity platform for application builders, provides thousands of customers in every market sector with the only identity solution they need for their web, mobile, IoT, and internal applications. Its extensible platform seamlessly authenticates and secures more than 2.5 billion logins per month, making it loved by developers and trusted by global enterprises. The company's U.S. headquarters in Bellevue, WA, and additional offices in Buenos Aires, London, Tokyo, and Sydney, support its global customers that are located in 70+ countries.