Javascript Rule-Based Authentication

Encrypt sensitive data in the user profile

How it works?

This rule will set a sensitive value in the app_metadata and encrypt it (see the Decrypt sensitive data from the user profile rule for information on how to decrypt the data).

The user will look like this after the encryption:

Note, for this to work you'll need to set two configuration settings. Both should be random strings:

  • ENCRYPT_PASSWORD
  • ENCRYPT_IV

How do I use it?

Just create a new rule in the Auth0 dashboard, and copy the following code replacing the placeholders with the appropriate values.

What is Rule-Based Authentication?

A rule is arbitrary JavaScript code that can be used to extend Auth0s default behavior when authenticating a user. Enabled rules will be executed in the order shown below for all users and applications as the final step of the authentication process.

Rules can be used to enrich and transform the user profile, deny access to specific users under certain conditions, retrieve information from external services and much more. For more information about rules, please check the documentation