Auth0 Universal Login defines your login flow, which is the key feature of an Authorization Server. Each time a user needs to prove their identity, your applications redirect to Universal Login and Auth0 will do what is needed to guarantee the user's identity.

By choosing Universal Login, you don't have to do any integration work to handle the various flavors of authentication. You can start off using a simple username and password. You can also add other features such as social login and multi-factor authentication (MFA). All of this is dynamic and adjustable in real-time without requiring application-level changes because all functionality is driven by the web pages served by the centralized Authentication Server. Your application will benefit from any improvements Auth0 makes in the login flow without the need for you to change your code.

You can customize the login page appearance and behavior from the Auth0 Dashboard including the logo and colors and for more advanced use cases, you can change the code of each page.

To learn more about the differences between Universal Login and embedded login, read Centralized Universal Login vs. Embedded Login.

Choose between two experiences in Universal Login.

• The New Universal Login experience does not require JavaScript to work and offers a simpler and faster experience for end-users.

• The Classic Universal Login Experience uses JavaScript controls for each page.

On the Dashboard, in Branding > Universal Login you can select which login experience to use for default, non-customized pages:

Choose an experience to learn more about:

• Classic Universal Login Experience

• New Universal Login Experience

To learn more about New Universal Login Experience limitations, read New Universal Login Experience Limitations.

In the Dashboard, go to Branding > Universal Login to view your login page settings. Here you can customize how the initial login screen is displayed, add your logo, and enter colors for the login button or page background.

In addition to configuring Universal Login for your tenant's applications, you will also need to complete a few other steps:

• Go to Dashboard > Authentication and choose a connection type to configure such as a database or social connection.

• Go to Dashboard > Applications > Applications and configure your application settings. Configure your application's code to call the /authorize endpoint to trigger Universal Login and handle the response. You can either do this directly or use one of our SDKs to make the process easier.

You can go to the login page from any browser:

https://YOUR_DOMAIN/authorize?
  response_type=code|token&
  client_id=YOUR_CLIENT_ID&
  connection=CONNECTION&
  redirect_uri=https://YOUR_APP/callback&
  state=STATE

You can (optionally) specify a connection, but you must specify a state and choose whether you want a code or token response (the choice you make depends on your app type and the flow you are using). Finally, make sure to fill in the domain, client ID, and redirect URI if they haven't been pre-filled. To learn more, read Prevent Attacks and Redirect Users With OAuth 2.0 State Parameters.

If you are already using the Auth0 Single-Page App SDK, using the auth0.loginWithRedirect() or auth0.loginWithPopup() methods will bring you to the Authorize endpoint.

<button id="login">Login</button>

$('#login').click(async () => {
      await auth0.loginWithRedirect();
    });

For detailed instructions on setting up your application to use Universal Login, check out our Quickstart guides and choose the one that best fits your chosen technologies. The Quickstart guides will walk you through all of the implementation steps.

• Centralized Universal Login vs. Embedded Login
• New Universal Login Experience
• New Universal Login Experience Limitations
• Classic Universal Login Experience