This Auth0 reference implementation uses terraform and docker to deploy two custom branded applications (moon-app & mars-app) which will use the same Auth0 universal login screen for both apps. You can use Auth0 Universal Login Page Templates to define the content displayed around the Universal Login widgets (e.g., the Login box, the MFA box). The same template is used for all pages, helping you implement a consistent, branded login experience across all B2B customers with less effort.
There are multiple Business-to-Business (B2B) use case scenarios where users end up belonging to third-party organizations that have signed up for the services you provide. Your customers often require the need to customize the login experience based on the company's brand that initiated the login. If a user logs in from Company A's app, it should show the Company A's brand (logo, background image, and colors). If the user logs in from Company B's app, it will alternatively show Company B's logo, background image, and colors.
There are a few things you will need setup on your computer before getting started:
- Free Auth0 Account with a custom domain configured
- Docker. You can check that Docker is installed properly by running
docker infoin your console. - Terraform. You can check that Terraform is installed properly by running
terraform -vin your console.
Please make sure these are installed on your machine before continuing.
In order for Terraform to be able to create Clients and APIs in Auth0 automagically (yes, it's a word), you'll need to manually create an Auth0 Machine-to-Machine Application that allows Terraform to communicate with Auth0.
- Navigate to your Auth0 Dashboard -> Applications -> Create Application.
- Name your new application
Terraform Auth0 Provider. - Select
Machine To Machine Applicationsand Create. - Under settings, save the
domain,client_id, andclient_secretfor later.
In order for the Terraform automation to run smoothly, a few local environment files will need to be created.
- First, clone https://github.com/tylernix/auth0-multiple-orgs-branding-demo.git.
- Create a
local.tfvarsin your root project directory that defines the necessary Auth0 configuration values as follows:
# The url of your Auth0 tenant domain (without the https://). This is not your custom domain url.
auth0_domain = "YOUR_AUTH0_DOMAIN.auth0.com"
# The url of the custom domain setup in Auth0 (include the https://).
auth0_base_issuer_url = "https://YOUR_AUTH0_CUSTOM_DOMAIN.com"
# Your Auth0 Terraform Auth0 Provider M2M Client ID
auth0_client_id = "YOUR_AUTH0_CLIENT_ID"
# Your Auth0 Terraform Auth0 Provider M2M Client Secret
auth0_client_secret = "YOUR_AUTH0_CLIENT_SECRET"
# Random password to be used to configure a test user account in Auth0. Does not need to be secure.
auth0_secret = "LONG_RANDOM_VALUE"You can execute the following command in your console to generate a suitable string for the auth0_secret value:
node -e "console.log(crypto.randomBytes(32).toString('hex'))"Once you have your local variables set up, you can run terraform.
- First, run
terraform initin your console inside the root of your project. This command gets your Terraform environment ready to go, installing any plugins and providers required for your configuration. - Run
terraform apply -var-file="local.tfvars". Typeyesand hit enter. Terraform will now take care of the hard work of creating all the resources necessary to get this demo up and running in your Auth0 tenant. Most Terraform providers are idempotent, meaning runningterraform applydoesn't have any additional effect once the infrastructure is set up.
Terraform will create:
- Two clients in Auth0 called
moon-appandmars-app. - A database in Auth0 to store users called
multiple-orgs-branding-user-db. - Retrieve the HTML liquid template from
auth0-page-template.liquidand upload it to the Auth0 Management API /api/v2/branding/templates/universal-login endpoint. - Two Docker images for the moon and mars apps.
- Two Docker containers running on http://localhost:3000 and http://localhost:3001, passing in the configuration settings from the recently created Auth0 clients).
When you are done with the demo, you can run terraform destroy -var-file="local.tfvars" to delete everything configured in this demo from Auth0 and stop the docker containers running locally.
To learn more about Auth0, take a look at the following resources: