Extension Configuration 

Controls whether Auth0-authenticated users with a valid session can bypass TYPO3's sudo mode password confirmation dialog when accessing Admin Tools modules.

When disabled (default), Auth0 users with a valid session will not be prompted for password confirmation when accessing protected Admin Tools modules, providing a smoother user experience for externally authenticated users.

When enabled, the standard TYPO3 sudo mode behavior is enforced, requiring password confirmation regardless of Auth0 session status.

When enabled and no backend user with a matching auth0_user_id is found, the extension attempts to locate an existing user by email address and username. If a match is found, the stored auth0_user_id is updated to the new value so subsequent logins use the standard lookup path.

This is useful when a user switches their login method within Auth0 — for example from a Google social connection to an email/password account. Even within the same Auth0 tenant, each connection type produces a different sub claim (e.g. google-oauth2|… vs. auth0|…). Without this option, TYPO3 would create a second backend user record, severing the original user's edit history and permissions.

The username is resolved via the YAML property mapping (databaseField: username). If no such mapping is configured, Auth0's nickname claim is used as a fallback.