Implementing Passwordless Sign-In to Auth0's Social Login Feature with CodeB Authenticator

If you're utilizing Auth0 as your Identity Provider, you might find it beneficial to enhance your system with passwordless sign-in options. This can be effortlessly achieved with the CodeB Authenticator, which fully supports OpenID Connect (OIDC) authentication.

The CodeB Authenticator integrates OpenID Connect (OIDC) authentication, enabling effortless passwordless sign-ins for any service that supports OIDC Logon. This feature not only streamlines user authentication across a wide range of services and systems but also fortifies security. It frees users from the task of memorizing multiple passwords, thereby minimizing the risk of password-related security breaches.

Furthermore, by refraining from using credentials as identifiers, the CodeB Authenticator effectively neutralizes the threat of phishing, Man-in-the-Middle (MitM), and other social engineering attacks. Once CodeB is set up as a Social Login within Auth0, your mobile device can function as a passwordless sign-in token, providing you secure access to your system via Auth0.

An additional layer of security is provided by the secure storage of all used keys in the hardware-backed keystore "Strongbox". This makes your mobile device a robust identity provider in its own right. The integration of Strongbox ensures that your keys are securely stored, further enhancing the security and integrity of your system.

You want to give it a try? Make sure you have the CodeB Authenticator started on your mobile and then click from your Desktop on the following link:

https://auth.codeb.io/oidcclient.html?url=https://dev-mmnnkx5w2gsexy6l.eu.auth0.com&path=/.well-known/openid-configuration&clientid=rlkzmLaVpYysB6IiumPnGSMM7HuHycfJ&secret=Fqbq6kECik7q5UnZYwdBsZtzvr9V06c1jXFYY8MvhEeiMyALyo8RULlbZbkRaUb-&scope=openid+profile+email+auth0

Incorporating CodeB through Basic OAuth2 (Social Connection) into Auth0 is a Breeze.

Here's how to do it:

1. Navigate in the Auth0 dashboard to Authentication -> Social.

2. Click on the "Create Connection" button.

3. Enter "https://auth.codeb.io/" as the connection URLs or use the URLs pointing to your CodeB Identity Broker instance.

4. Set the scope as "openid email auth0".

5. It's crucial to have the right "Fetch User Profile Script". (Feel free to reach out to us if you require further information.)

Fetch User Profile sample Script:

function fetchUserProfile(accessToken, context, callback) {

request.get(

{

url: 'https://auth.codeb.io/',

headers: {

'Authorization': 'Bearer ' + accessToken,

}

},

(err, resp, body) => {

if (err) {

return callback(err);

}

if (resp.statusCode !== 200) {

return callback(new Error(body));

}

let bodyParsed;

try {

bodyParsed = JSON.parse(body);

} catch (jsonError) {

return callback(new Error(body));

}

const profile = {

user_id: bodyParsed.socialIdpUserId,

name: bodyParsed.name,

nickname: bodyParsed.nickname,

phone_number: bodyParsed.phone_number,

email: bodyParsed.email

};

callback(null, profile);

}

);

}