@auth0/auth0-acul-react

v1.1.0

Published

9 days ago

The Auth0 ACUL React SDK enables you to build Advanced Customization for Universal Login with React hooks and components.

Downloads

1,603

Auth0 ACUL React SDK

Developers using Auth0's Universal Login can use this React SDK to customize screens like login, signup, or reset password. It provides hooks, context, and utilities to build flexible, type-safe experiences that match your brand and deliver a seamless user experience.

📚 Documentation

Quickstart - our guide for setting up the SDK on your app.
Guides - more guides for common use cases
Examples - code snippets for different customization use cases.

🚀 Getting started

Prerequisites

Before starting, ensure that you have the following setup:

Custom Domain: Ensure that a custom domain is configured for your Auth0 tenant.
Screen Configuration: Set up the required authentication screens within your Auth0 flow.
For detailed steps, refer to the Configure ACUL Screens.

Installation

npm install @auth0/auth0-acul-react

Peer dependency:

npm install react

Importing the SDK

The SDK supports partial imports for each screen, allowing you to include only the code you need for your specific use case. This helps keep your bundle size small and improves performance.

Also, you can use a root import to load all screens from a single bundle if your app requires it.

Partial Imports

Each screen has its own set of hooks and methods. You can import only what you need for the screen you're building.

The following example shows how to import and use SDK to build login-id screen.

import { 
  // Context hooks
  useUser,
  useTenant,
  useBranding,
  useClient,
  useOrganization,
  usePrompt,
  useScreen,
  useTenant,
  useTransaction,
  useUser,
  useUntrustedData,
  // Common hooks
  useErrors,
  useTexts,
  // Utility hooks
  useUsernameValidation,
  usePasswordValidation,
  useLoginIdentifiers,
  // Submit methods
  login,
  passkeyLogin,
  federatedLogin,
} from '@auth0/auth0-acul-react/login-id';

Root Imports

The SDK also supports a root import, which lets you load all screens from a single bundle. This is useful if your app dynamically renders different screens at runtime based on the current Auth0 flow, for example, when you want one unified build that can handle all possible screens.

However, root imports aren’t ideal for most projects since they can increase bundle size. If you only need specific screens, use partial imports instead for better performance.

import {
  // Common hooks
  useCurrentScreen,
  useAuth0Themes,
  useErrors,

  // Screen-specific hooks for multiple screens
  useLoginId,
  useSignupId,
  useResetPassword
} from '@auth0/auth0-acul-react';

Types / Interfaces

Typescript types and interfaces can be imported from @auth0/auth0-acul-react/types for type safety and better DX.

import type {
  Connection,
  CustomOptions,
  IdentifierType,
  Organizations,
  EnrolledDevice
  // ...other types
} from '@auth0/auth0-acul-react/types';

Refer to our API Reference for the full list of available types and interfaces.

💻 API Reference

Screens

| No. | Prompt | Screen Name | Documentation Link | |--------|--------------------|-------------------|--------------------------------------------------------------------------------------------| | 1 | login | login | Link | | 2 | login-id | login-id | Link | | 3 | login-password | login-password | Link | | 4 | signup-id | signup-id | Link | | 5 | signup-password | signup-password | Link |

| No. | Prompt |--------|------------ | 6 | login-passwordless | 7 | login-passwordless | 8 | passkeys | 9 | passkeys | 10 | phone-ident | 11 | phone-ident | 12 | email-ident | 13 | captcha | 14 | reset-password | 15 | reset-password | 16 | reset-password | 17 | reset-password | 18 | reset-password | 19 | signup | 20 | mfa | 21 | mfa | 22 | mfa | 23 | mfa | 24 | mfa-push | 25 | mfa-push | 26 | mfa-push | 27 | mfa-push | 28 | mfa-sms | 29 | mfa-sms | 30 | mfa-sms | 31 | mfa-sms | 32 | mfa-email | 33 | mfa-email | 34 | invitatino | 35 | organizations | 36 | organizations | 37 | reset-password | 38 | mfa-otp | 39 | mfa-otp | 40 | reset-password | 41 | reset-password | 42 | reset-password | 43 | reset-password | 44 | mfa-phone | 45 | mfa-voice | 46 | mfa-recovery-code | 47 | device-flow | 48 | device-flow | 49 | device-flow | 50 | reset-password | 51 | reset-password | 52 | common | 53 | device-flow | 54 | mfa-phone | 55 | mfa-voice | 56 | mfa-recovery-code | 57 | reset-password | 58 | mfa-recovery-code | 59 | logout | 60 | logout | 61 | logout | 62 | email-verification | 63 | login-email-verification | 64 |mfa-webauthn | 65 |mfa-webauthn | 66 |mfa-webauthn | 67 |mfa-webauthn | 68 |mfa-webauthn | 69 |mfa-webauthn | 70 |mfa-webauthn | 71 |mfa-webauthn | 72 |reset-password | 73 |reset-password | 74 |consent | 75 |customized-consent | 76 |email-otp-challenge | Screen Name | Documentation Link | --------------------|-------------------------------------------|-------------------------------------------------------------------------------------------------------| | login-passwordless-email-code | Link | | login-passwordless-sms-otp | Link | | passkey-enrollment | Link | | passkey-enrollment-local | Link | ifier-enrollment | phone-identifier-enrollment | Link | ifier-challenge | phone-identifier-challenge | Link | ifier-challenge | email-identifier-challenge | Link | | interstitial-captcha | Link | | reset-password-email | Link | | reset-password-request | Link | | reset-password | Link | | reset-password-error | Link | | reset-password-success | Link | | signup | Link | | mfa-detect-browser-capabilities | Link | | mfa-enroll-result | Link | | mfa-begin-enroll-options | Link | | mfa-login-options | Link | | mfa-push-enrollment-qr | Link | | mfa-push-welcome | Link | | mfa-push-challenge-push | Link | | mfa-push-list | Link | | mfa-country-codes | Link | | mfa-sms-challenge | Link | | mfa-sms-enrollment | Link | | mfa-sms-list | Link | | mfa-email-challenge | Link | | mfa-email-list | Link | | accept-invitation | Link | | organization-picker | Link | | organization-selection | Link | | mfa-otp-challenge | Link | | mfa-otp-enrollment-code | Link | | mfa-otp-enrollment-qr | Link | | reset-password-mfa-email-challenge | Link | | reset-password-mfa-push-challenge-push | Link| | mfa-sms-challenge | Link | | reset-password-mfa-otp-challenge | Link | | mfa-phone-enrollment | Link | | mfa-voice-enrollment | Link | | mfa-recovery-code-challenge | Link | | device-code-activation-allowed | Link | | device-code-activation-denied | Link | | device-code-activation | Link | | reset-password-mfa-recovery-code-challenge | Link | | reset-password-mfa-voice | Link | | redeem-ticket | Link | | device-code-confirmation | Link | | mfa-phone-challenge | Link | | mfa-voice-challenge | Link | | mfa-recovery-code-enrollment | Link | | reset-password-mfa-phone-challenge | Link | | mfa-recovery-code-challenge-new-code | Link | | logout | Link | | logout-aborted | Link | | logout-complete | Link | | email-verification-result | Link | | login-email-verification | Link | | mfa-webauthn-platform-enrollment | Link | | mfa-webauthn-error | Link | | mfa-webauthn-roaming-enrollment | Link | | mfa-webauthn-roaming-challenge | Link | | mfa-webauthn-platform-challenge | Link | | mfa-webauthn-enrollment-success | Link | | mfa-webauthn-change-key-nickname | Link | | mfa-webauthn-not-available-error | Link | | reset-password-mfa-webauthn-platform-challenge | Link | | reset-password-mfa-webauthn-roaming-challenge | Link | | consent | Link | | customized-consent | Link | | email-otp-challenge | Link |

Hooks

Context Hooks (Available in all screens)

useUser() - Current user information
useTenant() - Tenant configuration
useClient() - Application client information
useScreen() - Current screen data and configuration
useTransaction() - Transaction state and methods
useBranding() - Tenant branding and theme
useOrganization() - Organization context (if applicable)
usePrompt() - Current authentication prompt
useUntrustedData() - Untrusted data from the authentication flow

Utility Hooks

Specialized hooks for form validation, polling, and identifier management:

Identifier Management

useLoginIdentifiers() - Get available login identifier types (email, phone, username)
useSignupIdentifiers() - Get available signup identifier types, each with its required status

Form Validation

usePasswordValidation(password, rules) - Real-time password strength validation
useUsernameValidation(username) - Username format and availability validation

MFA & Polling

useMfaPolling(options) - Manage MFA push notification polling lifecycle
useResend(options) - Handle resend operations with cooldown timers

Common Hooks

General-purpose hooks available across all screens:

Screen Management

useCurrentScreen() - Get complete current screen context data
useAuth0Themes() - Access tenant branding and theme configuration

Error Handling

useErrors(options) - Comprehensive error management with categorization
- Filter by error kind: 'validation', 'auth0', 'configuration'
- Filter by field name for form-specific errors
- Dismiss individual or all errors

Screen-Specific Action Methods

Each screen module exports methods for screen actions:

// Login ID Screen
import {
  loginMethod,
  continueWithFederatedLogin
} from '@auth0/auth0-acul-react/login-id';

// Password Screen
import {
  loginMethod,
  forgotPasswordMethod
} from '@auth0/auth0-acul-react/login-password';

// MFA Push Challenge
import {
  continueMethod,
  resendPushNotification,
  useMfaPolling
} from '@auth0/auth0-acul-react/mfa-push-challenge-push';

Examples

React Examples - Complete React component examples
React Boilerplate - Full React application template

💬 Feedback

Contributing

We appreciate feedback and contribution to this repo! Before you get started, please see the following:

Raise an issue

To provide feedback or report a bug, please raise an issue on our issue tracker.

Vulnerability Reporting

Please do not report security vulnerabilities on the public GitHub issue tracker. The Responsible Disclosure Program details the procedure for disclosing security issues.