> ## Documentation Index > Fetch the complete documentation index at: https://docs-dev.auth0-mintlify.app/llms.txt > Use this file to discover all available pages before exploring further. # Add Login to Your Ionic Vue with Capacitor Application > This guide demonstrates how to integrate Auth0 with an Ionic Vue & Capacitor application using the Auth0 Vue SDK. export const HowToSchema = () => ; export const CreateInteractiveApp = ({placeholderText = 'Auth0', appType = 'regular_web', allowedCallbackUrls = ['localhost:3000'], allowedLogoutUrls = ['localhost:3000'], allowedOriginUrls = ['localhost:3000']}) => { const [isAuthenticated, setIsAuthenticated] = useState(false); const [storeReady, setStoreReady] = useState(false); const [displayForm, setDisplayForm] = useState(true); useEffect(() => { const init = () => setStoreReady(true); if (window.rootStore) { window.rootStore.clientStore.setSelectedClient(null); window.rootStore.clientStore.setSelectedClientSecret(undefined); init(); } else { window.addEventListener('adu:storeReady', init); } return () => { window.removeEventListener('adu:storeReady', init); }; }, []); useEffect(() => { if (!storeReady) return; const disposer = autorun(() => { const rootStore = window.rootStore; setIsAuthenticated(rootStore.sessionStore.isAuthenticated); }); return () => { disposer(); }; }, [storeReady]); if (!storeReady || typeof window === 'undefined' || !displayForm) { return <>; } const login = () => { const baseUrl = window.rootStore.config.apiBaseUrl; const returnTo = encodeURIComponent(window.location.href); window.location.href = `${baseUrl}/auth/user/login?returnTo=${returnTo}`; }; const Card = ({className = '', children}) => { return

{children}

; }; const Button = ({children, ...props}) => { return ; }; const CreateApplicationForm = () => { const [name, setName] = useState(''); const [isLoading, setIsLoading] = useState(false); const [error, setError] = useState(''); const handleSubmit = async () => { if (!name.trim()) { setError('Application name is required'); return; } setIsLoading(true); setError(null); try { await window.rootStore.clientStore.createClient({ name: name.trim(), app_type: appType, callbacks: allowedCallbackUrls, allowed_logout_urls: allowedLogoutUrls, web_origins: allowedOriginUrls, client_metadata: { created_by: 'quickstart-docs-app-creation-component' } }); setDisplayForm(false); } catch (err) { console.error('Error creating client:', err); const errorMessage = err instanceof Error ? err.message : 'Failed to create application'; setError(errorMessage); } finally { setIsLoading(false); } }; return Create Auth0 App

setName(e.target.value)} />

{error &&

{error}

} ; }; const SignInForm = () => { return to create the app ; }; return isAuthenticated ? : ; }; export const AuthCodeBlock = ({filename, icon, language, highlight, children}) => { const [displayText, setDisplayText] = useState(children); const [copyText, setCopyText] = useState(children); const wrapperRef = React.useRef(null); useEffect(() => { let unsubscribe = null; function init() { if (!window.autorun || !window.rootStore) { return; } unsubscribe = window.autorun(() => { let processedChildrenForDisplay = children; let processedChildrenForCopy = children; for (const [key, value] of window.rootStore.variableStore.values.entries()) { const escapedKey = key.replaceAll(/[.*+?^${}()|[\]\\]/g, (String.raw)`\$&`); let displayValue = value; if (key === "{yourClientSecret}" && value !== "{yourClientSecret}") { displayValue = value.substring(0, 3) + "*****MASKED*****"; } processedChildrenForDisplay = processedChildrenForDisplay.replaceAll(new RegExp(escapedKey, "g"), displayValue); processedChildrenForCopy = processedChildrenForCopy.replaceAll(new RegExp(escapedKey, "g"), value); } setDisplayText(processedChildrenForDisplay); setCopyText(processedChildrenForCopy); }); } if (window.rootStore) { init(); } else { window.addEventListener("adu:storeReady", init); } return () => { window.removeEventListener("adu:storeReady", init); unsubscribe?.(); }; }, [children]); useEffect(() => { if (!wrapperRef.current) return; const originalWriteText = navigator.clipboard.writeText.bind(navigator.clipboard); let isOverriding = false; const handleClick = e => { const button = e.target.closest('[data-testid="copy-code-button"]'); if (!button || !wrapperRef.current.contains(button)) return; isOverriding = true; navigator.clipboard.writeText = text => { if (isOverriding) { isOverriding = false; navigator.clipboard.writeText = originalWriteText; return originalWriteText(copyText); } return originalWriteText(text); }; setTimeout(() => { if (isOverriding) { isOverriding = false; navigator.clipboard.writeText = originalWriteText; } }, 100); }; const wrapper = wrapperRef.current; wrapper.addEventListener('click', handleClick, true); return () => { wrapper.removeEventListener('click', handleClick, true); if (navigator.clipboard.writeText !== originalWriteText) { navigator.clipboard.writeText = originalWriteText; } }; }, [copyText]); return

{displayText}

; }; export const AuthCodeGroup = ({children, dropdown}) => { const [processedChildren, setProcessedChildren] = useState(children); useEffect(() => { let unsubscribe = null; function init() { unsubscribe = window.autorun(() => { const processChildren = node => { if (typeof node === "string") { let processedNode = node; for (const [key, value] of window.rootStore.variableStore.values.entries()) { const escapedKey = key.replaceAll(/[.*+?^${}()|[\]\\]/g, (String.raw)`\$&`); processedNode = processedNode.replaceAll(new RegExp(escapedKey, "g"), value); } return processedNode; } else if (Array.isArray(node)) { return node.map(processChildren); } else if (node && node.props && node.props.children) { return { ...node, props: { ...node.props, children: processChildren(node.props.children) } }; } return node; }; setProcessedChildren(processChildren(children)); }); } if (window.rootStore) { init(); } else { window.addEventListener("adu:storeReady", init); } return () => { window.removeEventListener("adu:storeReady", init); unsubscribe?.(); }; }, [children]); return {processedChildren}; }; If you use an AI coding assistant like Claude Code, Cursor, or GitHub Copilot, you can add Auth0 authentication automatically in minutes using [agent skills](https://agentskills.io/home). First, install the Auth0 agent skills: ```bash theme={null} npx skills add auth0/agent-skills --skill auth0-quickstart --skill auth0-ionic-vue ``` Then, ask your AI assistant: ```text theme={null} Add Auth0 authentication to my Ionic Vue app ``` Your AI assistant will automatically create your Auth0 application, fetch credentials, install the Auth0 Vue SDK and Capacitor plugins, configure deep linking, and implement login/logout flows with native browser integration. Learn more about [Auth0 agent skills](/docs/quickstart/agent-skills). ## Get Started This quickstart demonstrates how to add Auth0 authentication to an Ionic Vue application running on iOS and Android with Capacitor. You'll build a secure mobile app with login, logout, and user profile features using the Auth0 Vue SDK and Capacitor's native browser plugins. Create a new Ionic Vue project with Capacitor ```shellscript theme={null} npx ionic start auth0-ionic-vue blank --type=vue --capacitor ``` Open the project ```shellscript theme={null} cd auth0-ionic-vue ``` Make sure you're using the `@ionic/cli` package (not the deprecated `ionic` package). If you see errors about `--npm-client` during project creation, update your CLI: ```shellscript theme={null} npm uninstall -g ionic npm i -g @ionic/cli ``` ```shellscript theme={null} npm install @auth0/auth0-vue @capacitor/browser @capacitor/app ``` **[`@capacitor/browser`](https://capacitorjs.com/docs/apis/browser)** opens the Auth0 Universal Login page in the device's system browser (SFSafariViewController on iOS, Chrome Custom Tabs on Android) for secure authentication. **[`@capacitor/app`](https://capacitorjs.com/docs/apis/app)** listens for deep link events so your app can handle the OAuth callback when Auth0 redirects back after login. Next up, you need to create a new app on your Auth0 tenant. Ionic Capacitor apps use the **Native** application type with custom URL scheme callbacks. You have three options to set up your Auth0 app: use the Quick Setup tool (recommended), run a CLI command, or configure manually via the Dashboard: Create an Auth0 **Native** application and get your credentials. After creating your app, note the **Domain** and **Client ID** values for the next step. You'll also need to configure callback and logout URLs in the Dashboard. See the URL configuration below. Run the following commands in your project's root directory to create an Auth0 app: ```shellscript Mac theme={null} # Install Auth0 CLI (if not already installed) brew tap auth0/auth0-cli && brew install auth0 # Set up Auth0 app and generate .env file auth0 qs setup --app --type native --framework ionic-vue --build-tool vite --name "My Ionic Vue App" ``` ```powershell Windows theme={null} # Install Auth0 CLI (if not already installed) scoop bucket add auth0 https://github.com/auth0/scoop-auth0-cli.git scoop install auth0 # Set up Auth0 app and generate .env file auth0 qs setup --app --type native --framework ionic-vue --build-tool vite --name "My Ionic Vue App" ``` This command will: 1. Check if you're authenticated (and prompt for login if needed) 2. Create an Auth0 Native application 3. Generate a `.env` file with your Auth0 domain and client ID 1. Head to the [Auth0 Dashboard](https://manage.auth0.com/dashboard/) 2. Click on **Applications** > **Applications** > **Create Application** 3. Enter a name for your app (e.g., `Ionic Vue App`), select **Native** as the application type, and click **Create** 4. Switch to the **Settings** tab and note your **Domain** and **Client ID** values Throughout this guide, `YOUR_PACKAGE_ID` is your application's package ID. This can be found and configured in the `appId` field in your `capacitor.config.ts` file. See [Capacitor's Config schema](https://capacitorjs.com/docs/config#schema) for more info. Configure the following URLs on the **Settings** tab of your Application Details page: **Allowed Callback URLs:** ```text theme={null} YOUR_PACKAGE_ID://{yourDomain}/capacitor/YOUR_PACKAGE_ID/callback ``` **Allowed Logout URLs:** ```text theme={null} YOUR_PACKAGE_ID://{yourDomain}/capacitor/YOUR_PACKAGE_ID/callback ``` **Allowed Origins:** ```text theme={null} capacitor://localhost, http://localhost ``` **Allowed Callback URLs** are a critical security measure to ensure users are safely returned to your application after authentication. Without a matching URL, the login process will fail, and users will be blocked by an Auth0 error page instead of accessing your app. **Allowed Logout URLs** are essential for providing a seamless user experience upon signing out. Without a matching URL, users will not be redirected back to your application after logout and will instead be left on a generic Auth0 page. **Allowed Origins** must include `capacitor://localhost` (iOS) and `http://localhost` (Android) for native app requests to Auth0. If you used **Quick Setup** or **CLI**, go to your app's **Settings** tab on the [Auth0 Dashboard](https://manage.auth0.com/#/applications) to configure the callback and logout URLs shown in the Dashboard tab above. ```typescript src/main.ts {5,6,8,9,14,15,16,17,18,19,20,21,22,23} lines theme={null} import { createApp } from 'vue' import App from './App.vue' import router from './router' import { IonicVue } from '@ionic/vue' import { createAuth0 } from '@auth0/auth0-vue' import config from '../capacitor.config' // Build the callback URL using your app's package ID const redirect_uri = `${config.appId}://{yourDomain}/capacitor/${config.appId}/callback` const app = createApp(App) .use(IonicVue) .use(router) app.use( createAuth0({ domain: '{yourDomain}', clientId: '{yourClientId}', useRefreshTokens: true, useRefreshTokensFallback: false, authorizationParams: { redirect_uri, }, }) ) router.isReady().then(() => { app.mount('#app') }) ``` * **`useRefreshTokens: true`** — Mobile browsers block third-party cookies, so iframe-based silent auth doesn't work. Refresh tokens call the `/oauth/token` endpoint directly. * **`useRefreshTokensFallback: false`** — Prevents the SDK from attempting the iframe-based fallback, which is unavailable on mobile. * **`router.isReady().then(...)`** — Ensures Vue Router is fully initialized before the SDK processes the OAuth callback, preventing race conditions. To persist authentication after closing and reopening the application, you may want to set `cacheLocation` to `localstorage`, but please be aware of [the risks of storing tokens in localstorage](https://auth0.com/docs/libraries/auth0-single-page-app-sdk#change-storage-options). Also, localstorage should be treated as **transient** in Capacitor apps as the data might be recovered unexpectedly. Please read the [guidance on storage in the Capacitor docs](https://capacitorjs.com/docs/guides/storage#why-cant-i-just-use-localstorage-or-indexeddb). Create component files ```shellscript Mac/Linux theme={null} mkdir -p src/components && touch src/components/LoginButton.vue && touch src/components/LogoutButton.vue && touch src/components/UserProfile.vue ``` ```powershell Windows theme={null} New-Item -ItemType Directory -Force -Path src/components New-Item -ItemType File -Path src/components/LoginButton.vue New-Item -ItemType File -Path src/components/LogoutButton.vue New-Item -ItemType File -Path src/components/UserProfile.vue ``` Add the following code to the new components, and update the existing `App.vue` and `HomePage.vue` ```vue src/components/LoginButton.vue lines theme={null} ``` ```vue src/components/LogoutButton.vue lines theme={null} ``` ```vue src/components/UserProfile.vue expandable lines theme={null} ``` ```vue src/views/HomePage.vue expandable lines theme={null} ``` ```vue src/App.vue expandable lines theme={null} ``` Test in the browser first: ```shellscript theme={null} ionic serve ``` When running in the browser with `ionic serve`, the custom URL scheme redirect won't work because browsers cannot handle custom URL schemes. For browser testing, temporarily change `redirect_uri` to `http://localhost:8100` in `src/main.ts` and add `http://localhost:8100` to your Auth0 app's **Allowed Callback URLs** and **Allowed Logout URLs** in the Dashboard. Remember to revert this change before building for native. To run on a device or simulator, first add the native platforms: ```shellscript theme={null} npx cap add ios npx cap add android ``` Then build, sync, and run: ```shellscript iOS theme={null} ionic build && npx cap sync && npx cap run ios ``` ```shellscript Android theme={null} ionic build && npx cap sync && npx cap run android ``` You must add native platforms with `npx cap add` before you can run on them. This only needs to be done once per platform. Make sure you've registered the [custom URL scheme](#custom-url-scheme-setup) for your platform first. **Checkpoint** You should now have a fully functional Auth0 login experience in your Ionic Vue application with login, logout, and user profile information. *** ## Advanced Usage Register your app's custom URL scheme so the OS can route the OAuth callback back to your app after authentication. ### iOS Register your custom URL scheme in your `ios/App/App/Info.plist`: ```xml theme={null} CFBundleURLTypes CFBundleURLSchemes YOUR_PACKAGE_ID ``` Replace `YOUR_PACKAGE_ID` with the `appId` from your `capacitor.config.ts`. To learn more, read [Defining a Custom URL Scheme](https://developer.apple.com/documentation/xcode/defining-a-custom-url-scheme-for-your-app). ### Android Add an intent filter to your `android/app/src/main/AndroidManifest.xml` inside the main `` tag: ```xml theme={null} ``` To learn more, read [Create Deep Links to App Content](https://developer.android.com/training/app-links/deep-linking). After modifying native project files, run `npx cap sync` to ensure your changes are applied. Use the built-in `authGuard` from the Auth0 Vue SDK to protect routes that require authentication: ```typescript src/router/index.ts theme={null} import { createRouter, createWebHistory } from '@ionic/vue-router' import { authGuard } from '@auth0/auth0-vue' import HomePage from '../views/HomePage.vue' import ProfilePage from '../views/ProfilePage.vue' const routes = [ { path: '/', name: 'Home', component: HomePage, }, { path: '/profile', name: 'Profile', component: ProfilePage, beforeEnter: authGuard, }, ] const router = createRouter({ history: createWebHistory(import.meta.env.BASE_URL), routes, }) export default router ``` The `authGuard` automatically redirects unauthenticated users to the Auth0 Universal Login page. After logging in, they are returned to the originally requested route. Configure the `audience` parameter in your `createAuth0` configuration to request access tokens for your API: ```typescript src/main.ts theme={null} app.use( createAuth0({ domain: '{yourDomain}', clientId: '{yourClientId}', useRefreshTokens: true, useRefreshTokensFallback: false, authorizationParams: { redirect_uri, audience: 'YOUR_API_IDENTIFIER', }, }) ) ``` Then use `getAccessTokenSilently` in your components to retrieve tokens and make authenticated API calls: ```vue src/components/ApiCall.vue theme={null} ``` The `getAccessTokenSilently` method retrieves the token from the cache or automatically refreshes it using the refresh token when needed. If you prefer the explicit `defineComponent` pattern over ` ``` The `defineComponent` pattern requires explicitly registering child components and returning values from the `setup()` function. Both patterns are fully supported by the Auth0 Vue SDK. ### Callback URL mismatch error **Solution:** Verify that the callback URL in your Auth0 Dashboard matches exactly with the URL constructed in your application. Ensure `YOUR_PACKAGE_ID` matches the `appId` field in your `capacitor.config.ts`. ### "PKCE not allowed" error **Fix:** 1. Go to Auth0 Dashboard > Applications > Your Application 2. Change the **Application Type** to **Native** 3. Set **Token Endpoint Authentication Method** to `None` 4. Save changes and try again ### SSO not working on iOS Capacitor's Browser plugin uses `SFSafariViewController`, which does not share cookies with Safari on iOS 11+. If you need SSO, use a compatible plugin that uses [ASWebAuthenticationSession](https://developer.apple.com/documentation/authenticationservices/aswebauthenticationsession). ### Login works but user stays unauthenticated after app restart Enable `cacheLocation: 'localstorage'` in the `createAuth0` configuration to persist tokens across app restarts. Be aware of the [security implications](https://auth0.com/docs/libraries/auth0-single-page-app-sdk#change-storage-options). The SDK also supports [custom cache implementations](https://github.com/auth0/auth0-spa-js/blob/master/EXAMPLES.md#creating-a-custom-cache) for more secure storage. ### Browser doesn't close after login Ensure you are calling `Browser.close()` inside the `appUrlOpen` event listener in your `App.vue` component. On Android, `Browser.close()` is a no-op, so the browser closes automatically. ### Login page opens in the device's default browser app If the login page opens in Safari or Chrome instead of an in-app browser overlay, make sure you're passing the `openUrl` callback to `loginWithRedirect` and `logout`. Without it, the SDK defaults to `window.location.href`, which navigates the entire app away.

{{ user.name }}

Oops!

Welcome