login method

Future<Credentials> login(
  1. {String? audience,
  2. Set<String> scopes = const {'openid', 'profile', 'email', 'offline_access'},
  3. String? redirectUrl,
  4. String? organizationId,
  5. String? invitationUrl,
  6. bool useEphemeralSession = false,
  7. Map<String, String> parameters = const {},
  8. IdTokenValidationConfig idTokenValidationConfig = const IdTokenValidationConfig(),
  9. SafariViewController? safariViewController}
)

Redirects the user to the Auth0 Universal Login page for authentication. If successful, it returns a set of tokens, as well as the user's profile (constructed from ID token claims).

If redirectUrl is not specified, a default URL is used that incorporates the domain value specified to Auth0.new, and scheme on Android, or the bundle identifier in iOS. redirectUrl must appear in your Allowed Callback URLs list for the Auth0 app. Read more about redirecting users.

How the ID token is validated can be configured using idTokenValidationConfig, but in general the defaults for this are adequate.

Additional notes:

  • (iOS only): useEphemeralSession controls whether shared persistent storage is used for cookies. Read more on the effects this setting has.
  • audience relates to the API Identifier you want to reference in your access tokens. See API settings to learn more.
  • scopes defaults to openid profile email offline_access. You can override these scopes, but openid is always requested regardless of this setting.
  • Arbitrary parameters can be specified and then picked up in a custom Auth0 Action or Rule.
  • If you want to log into a specific organization, provide the organizationId. Provide invitationUrl if a user has been invited to join an organization.
  • (iOS only): safariViewController causes SFSafariViewController to be used when opening the Universal Login page, as an alternative to the default ASWebAuthenticationSession. You will also need to configure your iOS app to automatically resume the Web Auth operation after login.

Implementation

Future<Credentials> login(
    {final String? audience,
    final Set<String> scopes = const {
      'openid',
      'profile',
      'email',
      'offline_access'
    },
    final String? redirectUrl,
    final String? organizationId,
    final String? invitationUrl,
    final bool useEphemeralSession = false,
    final Map<String, String> parameters = const {},
    final IdTokenValidationConfig idTokenValidationConfig =
        const IdTokenValidationConfig(),
    final SafariViewController? safariViewController}) async {
  final credentials = await Auth0FlutterWebAuthPlatform.instance.login(
      _createWebAuthRequest(WebAuthLoginOptions(
          audience: audience,
          scopes: scopes,
          redirectUrl: redirectUrl,
          organizationId: organizationId,
          invitationUrl: invitationUrl,
          parameters: parameters,
          idTokenValidationConfig: idTokenValidationConfig,
          scheme: _scheme,
          useEphemeralSession: useEphemeralSession,
          safariViewController: safariViewController)));

  await _credentialsManager?.storeCredentials(credentials);

  return credentials;
}