saltukalakus
/ RefreshTokenStepUpRule.js
Last active
January 5, 2022 19:14
Step up authentication with refresh tokens.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function (user, context, callback) { | |
| // Only applied for the refresh token flow along with the special scope (e.g.: transfer:funds) that | |
| // will trigger the MFA step up. | |
| if (context.protocol === "oauth2-refresh-token" && | |
| context.request.body && | |
| context.request.body.scope && | |
| context.request.body.scope.indexOf('transfer:funds') > -1) { | |
| // Insert a custom claim in id token which would be checked along with amr claim |
saltukalakus
/ profileMapper.js
Created
August 18, 2021 09:10
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| module.exports = function (raw_data) { | |
| var profile = { | |
| id: raw_data.objectGUID || raw_data.uid || raw_data.cn, | |
| displayName: raw_data.displayName, | |
| name: { | |
| familyName: raw_data.sn, | |
| givenName: raw_data.givenName | |
| }, | |
| nickname: raw_data['sAMAccountName'] || raw_data['cn'] || raw_data['commonName'], | |
| groups: raw_data['groups'], |
saltukalakus
/ default-custom-hosted-page.html
Created
August 12, 2021 21:01
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!DOCTYPE html> | |
| <html> | |
| <head> | |
| <meta charset="utf-8"> | |
| <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> | |
| <title>Sign In with Auth0</title> | |
| <meta name="viewport" content="width=device-width, initial-scale=1.0" /> | |
| <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css"> | |
| </head> | |
| <style> |
saltukalakus
/ classic-hosted-page.html
Last active
March 29, 2021 10:25
The passwordless and regular login with lock on the same universal page.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!DOCTYPE html> | |
| <html> | |
| <head> | |
| <meta charset="utf-8"> | |
| <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> | |
| <title>Sign In with Auth0</title> | |
| <meta name="viewport" content="width=device-width, initial-scale=1.0" /> | |
| <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css"> | |
| </head> | |
| <style> |
saltukalakus
/ rule.js
Created
March 25, 2021 16:25
Prevents users from logging in if email isn't shared in their Facebook account.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function (user, context, callback) { | |
| if (context.connection === "facebook" && !user.email) { | |
| return callback(new UnauthorizedError("We can't access your email. Please enable sharing your e-mail from Facebook apps settings and re-try.")); | |
| } | |
| return callback(null, user, context); | |
| } |
saltukalakus
/ m2m_action.js
Created
March 16, 2021 16:56
Sample Auth0 action to execute on a specific API and Application for adding a custom claim.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /** @type {CredentialsExchangeAction} */ | |
| module.exports = async (event, context) => { | |
| // This action works for an API with the API audience https://example.com/api along with an application with the | |
| // client id 5drbxrf5qMc1KTFNEw6Wjrbw319pOiyW | |
| if (event.audience === "https://example.com/api" && event.client.id === "5drbxrf5qMc1KTFNEw6Wjrbw319pOiyW") { | |
| return { | |
| customClaims: { | |
| "https://www.customnamespace.com/some_key": "some value" | |
| } | |
| }; |
saltukalakus
/ sample.java
Created
February 9, 2021 12:59
Java sample to reset connections every 30 seconds
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| object PoolingHttpClientFactory { | |
| private val poolingConnectionManager = PoolingHttpClientConnectionManager().apply { | |
| maxTotal = 40 | |
| defaultMaxPerRoute = 40 | |
| } | |
| // called every 30 seconds from a scheduled task | |
| fun cleanupConnections() { |
saltukalakus
/ rule.js
Created
January 26, 2021 10:27
Multiple attributes to a single attribute in SAML response when Auth0 is the SAML IdP
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function (user, context, callback) { | |
| // Execute the rule only for the required Apps's client ID | |
| var samlIdpClientId = 'LYkMiVolEzhDzaTQJPg6mRI468blVFU4'; | |
| if (context.clientID !== samlIdpClientId) { | |
| return callback(null, user, context); | |
| } | |
| user.tmpMemberOf = ""; | |
| function appendMember(memberOf) { |
saltukalakus
/ account_link_extension_rule_sample.js
Created
January 23, 2021 13:54
Account linking extension rule sample
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function (user, context, callback) { | |
| /** | |
| * This rule has been automatically generated by | |
| * Unknown at 2021-01-23T12:00:26.298Z | |
| */ | |
| var request = require('request@2.56.0'); | |
| var queryString = require('querystring'); | |
| var Promise = require('native-or-bluebird@1.2.0'); | |
| var jwt = require('jsonwebtoken@7.1.9'); |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Check if a custom domain supports TLS 1_x | |
| openssl s_client -connect saltukalakus-cd-27cmr6vn4orkxckx.edge.tenants.auth0.com:443 -servername demo.saltukalakus.com -tls1_1 | |
| openssl s_client -connect saltukalakus-cd-27cmr6vn4orkxckx.edge.tenants.auth0.com:443 -servername demo.saltukalakus.com -tls1_2 |