Web file manager Free Installation assistance Manual Home page

HTTP Commander Auth0 integration

Auth0 - Single Sign On & Token Based Authentication Platform. Auth0 is an enterprise-grade platform for modern identity. Auth0 secure and solve the most complex identity use cases with an extensible, easy to integrate platform that powers billions of logins every year, in both public cloud and on-premise deployments.

Enabling Auth0 support

To use Auth0 authentication in HTTP Commander, follow these steps:


Screenshot

Auth0 Login


Users management

After setting up Auth0, storing, authenticating and managing users and groups is carried out in the Auth0 platform (Accounts.xml is not used anymore)

To create and manage users, go to the Users section.

Screenshots

Also, you can enable logins using social connections (Connections → Social).
After enabling the Social Connection that you need, do not forget, after saving the setting, also enable the previously created HTTP Commander client on the Clients tab in the provider setup.
Also, some social providers (eg Bitbucket) require their Client ID to be specified, instead of the Dev Key from Auth0.
Note! If you use the Social Connections, be sure to mark the attribute with the e-mail address in the settings of each connection so that it is transmitted with the user profile at the login. This is required so that you can use the template %USEREMAIL% in the path to the folders. Note also that Twitter does not support the transfer of e-mail when you login.
Also, for paths to folders, the template %USERID% is supported, instead of which the user ID Auth0 is substituted, for example, auth0|560ebaeef609ee1adaa7c551 or google-oauth2|115015401343387192604.
In addition, you can configure the rule to automatically merge the logins with the same e-mail, into one account. It is recommended that you use the Link Accounts with Same Email Address while Merging Metadata rule template to save the list of groups to which these accounts belong. Please see Automatic Account Linking manual.
See also Social Login - Time to implement it in your apps.

Screenshots

In addition, you can configure many other parameters, for example such as: password policy, require username, etc.. (go to Database Connections and select Username-Password-Authentication).

Screenshot

Also, you can enable / disable in the Auth0 logon screen (Auth0 Lock) options to recover the password, if enabled parameter EnablePasswordRecovery or sign up, if enabled parameter EnableAnonymRegister, but keep in mind that if you are in the Database Connections settings Disable Sign Ups, then the parameter EnableAnonymRegister will not affect the ability to register to new users.
And also customize the logo and header text using parameters LoginFormHeaderLogoUrl and LoginFormHeaderHtml.
For more info see User Profile documentation.

Setting up and managing groups

Be sure to configure the support groups in Auth0. This is required for administrators to access the HTTP Commander (parameter Administrators) and configure the permissions for folders (Folder permissions). To do this, follow these steps:

Restrictions

Troubleshooting