I have set up the “Specific Email Domain Only” for a specific domain, it’s working in the case of GraphQL Implementation but it is not working in the case of “Hosted Login with Auth0”. When I signup or signin with the unallowed company email, it doesn’t show any issue but allow the user to signup with that.
How to handle this scenario.
Thanks!
Hi Nikhil - 8base has no way to protect against you signing up a user using your own Auth0 account. The email address would only be validated when to try to add a user to 8base after they’ve been authenticated using Auth0.
I’d recommend either adding your own logic in Auth0 rules to prevent unwanted signups, or build a custom authentication flow.