Page Contents

    Securing Experiences Using Auth0 Passwordless Authentication

    In this topic you will learn how to secure experiences using Auth0 Passwordless authentication.

    Experiences can be secured using Auth0 with Passwordless authentication. When using this method of security, users are asked to enter a phone number. Auth0 sends a one-time-use code using Twilio. The user then enters the code into your application. If the phone number attached to the code matches an existing user, Auth0 authenticates the user.

    Before you get started

    Before you configure Auth0 Passwordless, complete the following tasks:

    Getting a Twilio phone number

    You need to get a Twilio phone number that will be used as the sender number when you configure Passwordless.

    1. Log in to your Twilio account.
    2. On the Dashboard page, click Get a Trial Number.
    3. Click Choose this Number.
    4. Click Done to confirm the number.

    Configuring a Passwordless connection in Auth0

    Start by configuring a Passwordless Connection in Auth0.

    1. Log in to your Auth0 account.
    2. In the left navigation, click Connections > Passwordless.
    3. Enable the SMS connection.

    Entering your Twilio SID

    1. Return to Twilio.
    2. On the Dashboard page, locate the ACCOUNT SID field.
    3. Copy the value to the clipboard.
    4. Return to Auth0.
    5. Paste the value into the Twilio SID field.

    Entering your Twilio Auth Token

    1. Return to Twilio.
    2. On the Dashboard page, locate the AUTH TOKEN field.
    3. Click the Show link to reveal the token.
    4. Copy the value to the clipboard.
    5. Return to Auth0.
    6. Paste the value into the Twilio Auth Token field.

    Entering your Twilio From phone number

    1. Return to Twilio.
    2. On the Dashboard page, locate the TRIAL NUMBER you created earlier.
    3. Copy the number to the clipboard.
    4. Return to Auth0.
    5. Paste the value into the From field.
    6. (Optional) Customize the Message text.

    Enabling your application

    1. Click the Applications link at the top of the dialog.
    2. Enable the Auth0 application you created to secure your Brightcove Engage application.
    3. Click Save and close the dialog.

    Configuring your application to use a Passwordless login

    1. In the left navigation, click Universal Login.
    2. Click the Login link.
    3. Enable the Customize Login Page option.
    4. Select Lock (passwordless) from the DEFAULT TEMPLATES dropdown list.
    5. Click SAVE CHANGES.

    Previewing the experience

    Once the above steps have been completed, you can preview your experience to confirm the viewer is prompted for a phone number.

    1. Log in to Brightcove Engage.
    2. Click on the experience title that has been secured with Auth0.
    3. Preview the experience. You should be presented with a login screen that prompts for a phone number.
    4. Close the preview.

     

    Adding valid phone numbers to Twilio

    Add one or more phone numbers to Twilio for testing purposes.

    1. Return to Twilio.
    2. In the left navigation, click the All Products & Services icon.
    3. In the left navigation, click Phone Numbers.
    4. In the left navigation, click Verified Called IDs.
    5. Enter numbers that you want to use for testing. Your trial account should have the phone number that was used when you created your trial account.

    Validating the configuration

    The last step is to test that viewers can login using their mobile number.

    1. Open the Brightcove Engage application on your device. If prompted, enter the Access Code for your experience.
    2. Enter your phone number and click SUBMIT.
    3. Confirm that you receive an SMS message with a verification code.
    4. Enter the verification code and click SUBMIT.

    Your Brightcove Engage mobile app should display.

    Page last updated on 19 Jun 2021