> ## Documentation Index > Fetch the complete documentation index at: https://docs-staging-docs-event-stream-action-templates.mintlify.site/llms.txt > Use this file to discover all available pages before exploring further. > This guide demonstrates how to integrate Auth0 with any new or existing ASP.NET MVC application using the Auth0.AspNetCore.Authentication SDK. # Add Login to Your ASP.NET MVC Application export const HowToSchema = () => ; If you use an AI coding assistant like Claude Code, Cursor, or GitHub Copilot, you can add Auth0 authentication automatically in minutes using [agent skills](https://agentskills.io/home). **Install:** ```bash theme={null} npx skills add auth0/agent-skills --skill auth0-quickstart --skill auth0-aspnetcore-authentication ``` **Then ask your AI assistant:** ```text theme={null} Add Auth0 authentication to my ASP.NET Core MVC app ``` Your AI assistant will automatically create your Auth0 application, fetch credentials, install the Auth0 ASP.NET Core Authentication SDK, configure authentication middleware, and implement login/logout flows. [Full agent skills documentation →](/docs/quickstart/agent-skills) **Prerequisites:** Before you begin, ensure you have the following installed: * **[.NET SDK](https://dotnet.microsoft.com/download)** 8.0 or newer * Your favorite code editor (Visual Studio, VS Code, or Rider) * An Auth0 account ([sign up for free](https://auth0.com/signup)) ## Get Started Auth0 allows you to quickly add authentication and gain access to user profile information in your application. This guide demonstrates how to integrate Auth0 with any new or existing ASP.NET MVC application using the `Auth0.AspNetCore.Authentication` SDK. Create a new ASP.NET Core MVC project for this Quickstart ```shellscript theme={null} dotnet new mvc -n SampleMvcApp ``` Open the project ```shellscript theme={null} cd SampleMvcApp ``` ```shellscript theme={null} dotnet add package Auth0.AspNetCore.Authentication ``` Next up, you need to create a new Application on your Auth0 tenant and add the configuration to your project. You can choose to set up your Auth0 app automatically by running a CLI command, or do it manually via the Dashboard: Run the following shell command on your project's root directory to create an Auth0 Application and update your `appsettings.json`: ```shellscript Mac theme={null} # Install Auth0 CLI (if not already installed) brew tap auth0/auth0-cli && brew install auth0 # Set up Auth0 app and generate appsettings.json auth0 qs setup --app --type regular --framework aspnet-mvc --port 5000 --name "My ASP.NET MVC App" ``` ```powershell Windows theme={null} # Install Auth0 CLI (if not already installed) scoop bucket add auth0 https://github.com/auth0/scoop-auth0-cli.git scoop install auth0 # Set up Auth0 app and generate appsettings.json auth0 qs setup --app --type regular --framework aspnet-mvc --port 5000 --name "My ASP.NET MVC App" ``` This command will: 1. Check if you're authenticated (and prompt for login if needed) 2. Create an Auth0 Regular Web Application configured for `http://localhost:5000` 3. Update `appsettings.json` with `Auth0:Domain`, `Auth0:ClientId`, and `Auth0:ClientSecret` Before you start, create or update `appsettings.json` on your project's root directory ```json appsettings.json theme={null} { "Logging": { "LogLevel": { "Default": "Information", "Microsoft.AspNetCore": "Warning" } }, "AllowedHosts": "*", "Auth0": { "Domain": "YOUR_AUTH0_DOMAIN", "ClientId": "YOUR_CLIENT_ID", "ClientSecret": "YOUR_CLIENT_SECRET" } } ``` 1. Go to the [Auth0 Dashboard](https://manage.auth0.com/dashboard/) 2. Click **Applications → Applications → Create Application** 3. Enter a name for your application (e.g., "My MVC App") 4. Select **Regular Web Application** as the application type 5. Click **Create** 6. Go to the **Settings** tab 7. Replace `YOUR_AUTH0_DOMAIN`, `YOUR_CLIENT_ID`, and `YOUR_CLIENT_SECRET` in the `appsettings.json` file with the **Domain**, **Client ID**, and **Client Secret** values from the dashboard **Configure Callback URLs:** In the **Settings** tab, configure the following URLs: * **Allowed Callback URLs**: `http://localhost:5000/callback` * **Allowed Logout URLs**: `http://localhost:5000` * **Allowed Web Origins**: `http://localhost:5000` Click **Save Changes** **Important:** Make sure to [setup connections](https://auth0.com/docs/get-started/applications/set-up-database-connections) and enable them for your application in the Auth0 Dashboard under the **Connections** tab. Update your `Program.cs` to configure Auth0 authentication: ```csharp Program.cs lines theme={null} using Auth0.AspNetCore.Authentication; var builder = WebApplication.CreateBuilder(args); builder.Services.AddAuth0WebAppAuthentication(options => { options.Domain = builder.Configuration["Auth0:Domain"]; options.ClientId = builder.Configuration["Auth0:ClientId"]; options.ClientSecret = builder.Configuration["Auth0:ClientSecret"]; }); builder.Services.AddControllersWithViews(); var app = builder.Build(); if (!app.Environment.IsDevelopment()) { app.UseExceptionHandler("/Home/Error"); app.UseHsts(); } app.UseHttpsRedirection(); app.UseStaticFiles(); app.UseRouting(); app.UseAuthentication(); app.UseAuthorization(); app.MapControllerRoute( name: "default", pattern: "{controller=Home}/{action=Index}/{id?}"); app.Run(); ``` Create an `AccountController.cs` in the `Controllers` folder: ```csharp Controllers/AccountController.cs lines theme={null} using Auth0.AspNetCore.Authentication; using Microsoft.AspNetCore.Authentication; using Microsoft.AspNetCore.Authentication.Cookies; using Microsoft.AspNetCore.Authorization; using Microsoft.AspNetCore.Mvc; public class AccountController : Controller { public async Task Login(string returnUrl = "/") { var authenticationProperties = new LoginAuthenticationPropertiesBuilder() .WithRedirectUri(returnUrl) .Build(); await HttpContext.ChallengeAsync(Auth0Constants.AuthenticationScheme, authenticationProperties); } [Authorize] public async Task Logout() { var authenticationProperties = new LogoutAuthenticationPropertiesBuilder() .WithRedirectUri(Url.Action("Index", "Home")) .Build(); await HttpContext.SignOutAsync(Auth0Constants.AuthenticationScheme, authenticationProperties); await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme); } [Authorize] public IActionResult Profile() { return View(); } } ``` Create a new file `Views/Account/Profile.cshtml`: ```html Views/Account/Profile.cshtml lines theme={null} @{ ViewData["Title"] = "User Profile"; }

@ViewData["Title"]

@User.Identity.Name

Email: @User.FindFirst(c => c.Type == System.Security.Claims.ClaimTypes.Email)?.Value

Email Verified: @User.FindFirst(c => c.Type == "email_verified")?.Value

User ID: @User.FindFirst(c => c.Type == System.Security.Claims.ClaimTypes.NameIdentifier)?.Value

User Claims

@foreach (var claim in User.Claims) { }

Claim Type	Claim Value
@claim.Type	@claim.Value

``` **Note:** You'll need to create the `Views/Account` directory first if it doesn't exist. Update your layout file to add Login/Logout buttons. In `Views/Shared/_Layout.cshtml`, find the `

` element and replace it with: ```html Views/Shared/_Layout.cshtml lines theme={null}

``` **Important:** Only replace the `

` element. Keep all other parts of \_Layout.cshtml intact, especially the `@RenderBody()` call which is required for rendering page content. ```shellscript theme={null} dotnet run ``` Your application should start and display the URL it's listening on: ``` info: Microsoft.Hosting.Lifetime[14] Now listening on: http://localhost:5000 ``` Open your browser and navigate to `http://localhost:5000`. Click the **Login** link in the navigation bar. You'll be redirected to Auth0's login page. After logging in, you'll be redirected back to your application, and you should see your name in the navigation bar. **Checkpoint** You should now have a fully functional Auth0-protected MVC application running on [http://localhost:5000](http://localhost:5000). Users can log in, view their profile, and log out. *** ## Advanced Usage You can access user profile information through the `User` property in your controllers or views: ```csharp Controllers/AccountController.cs theme={null} [Authorize] public IActionResult Profile() { var user = new { Name = User.Identity.Name, EmailAddress = User.FindFirst(c => c.Type == System.Security.Claims.ClaimTypes.Email)?.Value, ProfileImage = User.FindFirst(c => c.Type == "picture")?.Value, UserId = User.FindFirst(c => c.Type == System.Security.Claims.ClaimTypes.NameIdentifier)?.Value }; return View(user); } ``` The user claims contain standard OIDC information: * **Name**: User's display name * **Email**: User's email address * **Picture**: User's profile picture URL * **NameIdentifier** (sub): Unique user ID You can pass custom parameters to the Auth0 login page: ```csharp Controllers/AccountController.cs theme={null} public async Task Login(string returnUrl = "/") { var authenticationProperties = new LoginAuthenticationPropertiesBuilder() .WithRedirectUri(returnUrl) .WithParameter("screen_hint", "signup") // Show signup page .WithParameter("ui_locales", "es") // Set language to Spanish .Build(); await HttpContext.ChallengeAsync(Auth0Constants.AuthenticationScheme, authenticationProperties); } ``` If you need to call external APIs on behalf of the user, you can retrieve and store tokens: ```csharp Program.cs theme={null} builder.Services.AddAuth0WebAppAuthentication(options => { options.Domain = builder.Configuration["Auth0:Domain"]; options.ClientId = builder.Configuration["Auth0:ClientId"]; options.ClientSecret = builder.Configuration["Auth0:ClientSecret"]; }) .WithAccessToken(options => { options.Audience = "https://your-api.example.com"; }); ``` Then retrieve the access token in your controller: ```csharp Controllers/ApiController.cs theme={null} [Authorize] public async Task CallApi() { var accessToken = await HttpContext.GetTokenAsync("access_token"); // Use the access token to call your API var client = new HttpClient(); client.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", accessToken); var response = await client.GetAsync("https://your-api.example.com/data"); var data = await response.Content.ReadAsStringAsync(); return View(data); } ``` Customize authentication behavior by handling events: ```csharp Program.cs theme={null} builder.Services.AddAuth0WebAppAuthentication(options => { options.Domain = builder.Configuration["Auth0:Domain"]; options.ClientId = builder.Configuration["Auth0:ClientId"]; options.ClientSecret = builder.Configuration["Auth0:ClientSecret"]; }) .WithAccessToken(options => { options.Events = new Auth0WebAppWithAccessTokenEvents { OnMissingRefreshToken = async (context) => { await context.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme); var authenticationProperties = new LoginAuthenticationPropertiesBuilder() .WithRedirectUri("/") .Build(); await context.ChallengeAsync(Auth0Constants.AuthenticationScheme, authenticationProperties); } }; }); ``` *** ## Additional Resources Source code and issue tracker Detailed API documentation Get help from the Auth0 community *** ## Common Issues **Problem:** `Unable to obtain configuration from: https://your-tenant.auth0.com/.well-known/openid-configuration` **Solution:** Verify your Domain is correct and does not include `https://`. The library automatically constructs the authority. ```json theme={null} { "Auth0": { "Domain": "your-tenant.auth0.com" // Correct - no protocol } } ``` Also ensure: * No trailing slash in the domain value * Your application has internet access to reach Auth0 * The domain format matches your tenant region (`.auth0.com`, `.us.auth0.com`, `.eu.auth0.com`) **Problem:** `ArgumentNullException: Value cannot be null. (Parameter 'Domain')` or similar. **Solution:** Ensure `appsettings.json` contains the Auth0 section with Domain, ClientId, and ClientSecret values. Check that configuration is being read correctly: ```csharp Program.cs theme={null} builder.Services.AddAuth0WebAppAuthentication(options => { options.Domain = builder.Configuration["Auth0:Domain"] ?? throw new InvalidOperationException("Auth0:Domain is required"); options.ClientId = builder.Configuration["Auth0:ClientId"] ?? throw new InvalidOperationException("Auth0:ClientId is required"); options.ClientSecret = builder.Configuration["Auth0:ClientSecret"] ?? throw new InvalidOperationException("Auth0:ClientSecret is required"); }); ``` **Problem:** Authentication not working despite correct configuration. **Solution:** Ensure middleware is in the correct order. `UseAuthentication()` must come before `UseAuthorization()`: ```csharp Program.cs theme={null} app.UseRouting(); app.UseAuthentication(); // Must be before UseAuthorization app.UseAuthorization(); app.MapControllerRoute(...); ``` *** ## Sample Application A sample application can be found alongside the sourcecode for the SDK: Includes login, logout, user profile and other examples. Clone and run: ```bash theme={null} git clone https://github.com/auth0/auth0-aspnetcore-authentication.git cd auth0-aspnetcore-authentication/playground/Auth0.AspNetCore.Authentication.Playground # Update appsettings.json with your Auth0 configuration dotnet run ``` ***