v4 migration and Allowed Callback URLs

[nnnnat]

I've migrated our nextjs app to use v4 of this SDK and one thing I've had to do to get it working is update the Allowed Callback URLs for my app in the Auth0 admin to allow https://my-domain.com/auth/callback. Previously I had set my nextjs app up using the handleLogin function in a nextjs app/api route as outlined in the v3 README with an Allowed Callback URL of https://my-domain.com/api/auth/callback.

We deploy our application into our customers cloud env, each customer has their own Auth0/Okta that they manage. Does this mean that each customer would need to add this new callback route to their app in their Auth0 admin?

Is there a way to configure the middleware to use /api/auth/* for the auth routes vs the default /auth/*?

[frederikprijck]

Hey,

yes you should be able to use what is defined here: https://github.com/auth0/nextjs-auth0/blob/main/EXAMPLES.md#custom-routes

export const auth0 = new Auth0Client({
  routes: {
    login: "/api/auth/login",
    logout: "/api/auth/logout",
    callback: "/api/auth/callback",
    backChannelLogout: "/api/auth/backchannel-logout",
  },
})

Then for the two other endpoints: /auth/profile and /auth/access-token, you can define the following two environment variables:

NEXT_PUBLIC_PROFILE_ROUTE=/api/auth/profile
NEXT_PUBLIC_ACCESS_TOKEN_ROUTE=/api/auth/access-token

Let me know if that doesnt work.

[nnnnat]

Nice! Yes I think this will work for us. Thank you